Couple of weeks back, 29A officially shut down business. 29A’s published work was one of the best (IMHO) sources for cutting edge virus technologies. Their e-zines provided a sampling of what was happening in the Virus underground during that period. This was the last message posted by VirusBuster in their site: ” I tried to contact ValleZ [...]
Author Archive
Virus group 29A disbanded – who’s next? Leave a comment
automating the snort IDS in FreeBSD Leave a comment
Currently I am into automating the process of installing and configuring snort in FreeBSD. I have developed a small script which installs and configures Snort, MySql, Apache, PHP, ADODB and Base console in FreeBSD. Currently I have written the following scripts: 1) start.sh -> creates all necessary directories and users 2) deps.sh -> installs dependencies [...]
spyware signature file Leave a comment
I am writing a small spyware removal software … I am writing this tool in VC++ and in ASM … currently I am writing a module to build the signature database and methods to retrieve informations from the DB … while doing this work I came across a good website which has excellent information about [...]
hacker manifesto Leave a comment
This is our world now… the world of the electron and the switch, the beauty of the baud. We explore… you call us criminals. We seek after knowledge… and you call us criminals. We exist without skin color, without nationality, without religious bias… and you call us criminals. You build atomic bombs, you wage wars, [...]
regmon Leave a comment
regmon and filemon are the two important tools used in malware analysis. any malware, when it first infects the Windoze box, it infects the registry. the reason behind this is to make sure that the malware runs every time windoze boots up and to disable other security settings of windoze / av’s. regmon tool basically [...]
what is oneha|f lab ? Leave a comment
so what is this oneha|f group ? a place for people to do malware research, malware code analysis, behaviour analysis, discuss about defending malwares, incident response and much more . I have chosen the name oneha|f because, it was the first virus infected my system ….. I got very thrilled by knowing it’s infection technique [...]
first post Leave a comment
Welcome to oneha|f Lab, the malware research group this is the first post in this group. our primary focus is to study about malwares, techniques, malware defense and things like that . you can interact with our group at onehalf@googlegroups.com
