Re: Tools to analyze "captured" binaries?

[mihaim () PROFM RO (Mihai Moldovanu)]

Anton Chuvakin wrote:

> Hi there!
>
> I just got a bunch of trojaned binaries (usual rootkit, I guess,
> fingerd/ftp/login together with a sniffer) from my friend's box (hacked
> via ADMROCKS, of course). What tools (apart from strings, ldd, file) I can
> use to analyze those?

You  can dissassemble them using IDA . ( www.datarescue.com).

--
Lead programmer,
Mihai Moldovanu (mihaim () profm ro)
WEB:    http://tfm.profm.ro/


<HR NOSHADE>
<UL>
<LI>text/x-vcard attachment: Card for Mihai Moldovanu
</UL>