PaulDotCom mailing list archives

Re: Thick Client testing

From: Bugbear <gbugbear () gmail com>
Date: Fri, 11 Feb 2011 16:50:12 -0500

Jorge,

I have typically used http://www.honeynet.org/project/CaptureBAT or
http://technet.microsoft.com/en-us/sysinternals/bb896645 for dynamic
malware analysis.

Should do the job. Capturebat is no thrills, dumps to a txt file and
you need to parse through it another way. Process monitor allows you
to filter by multiple fields and also logs network connections
(problem is some malicious programs will detect it).

Tim

On Fri, Feb 11, 2011 at 2:37 PM, Jorge A. Orchilles <jorgeao () gmail com> wrote:

Hello all,
I am looking for a tool that logs all file and registries
touched/modified/added when installing an application. Mainly for Windows
but if one exists for other OS that is a plus. I checked out Install Watch
but it only supports Windows 98 SE :P

Best Regards,
Jorge Orchilles


_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

Current thread:

Thick Client testing Jorge A. Orchilles (Feb 11)
- Re: Thick Client testing Espen Torgersen (Feb 11)
- Re: Thick Client testing Bugbear (Feb 11)
- Re: Thick Client testing Tyler Robinson (Feb 11)
  - Re: Thick Client testing Josh More (Feb 11)
  - Re: Thick Client testing Michael Salmon (Feb 11)
    - Re: Thick Client testing Kevin Shaw (Feb 11)
- <Possible follow-ups>
- Re: Thick Client testing Jorge A. Orchilles (Feb 14)