Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

Zerowine version 0.0.2 released

I'm pleased to announce the new version of Zerowine, a sandbox for malware analysis. The following are the new (sexy) features I added to the project:

* Added python-ptrace to the virtual machine.
* Added script memory_dump.py to dump the malware while running (commonly unpacked).
* Added an small database of Virtual Machine detection tricks.
* Updated PEFile (By Ero Carrera) to the latest version.
* Added detection for anti-debugging techniques.
* Added support to download memory dumps.
* Drastically reduced the prebuilt Virtual Machine's image.

Posted by Joxean Koret 2009-01-20