Saturday, November 26, 2011

Hook Analyser 1.4 updates

The Hook Analyser 1.4 development is on full swing and I must say that code base has changed a lot. The overall functionality and UI has changed.

Few updates from my side -

  • Intergration with VMware workstation to automate the analysis tasks i.e - sandbox mode.
  • Improved hooking functionality
  • Detailed report from the analysis.
  • Bug fixes.

I will post some videos soon.

Till then, stick to version 1.3.

Saturday, November 19, 2011

Hook Analyser 1.4 - Development

I had request from a few people asking, how this tool could be used for malware analysis. Since I'm currently working on the next release, so I decided to analyse a malware sample using Hook Analyser 1.4 (in development).

Please note; this release is not stable at the moment and I advice to continue using version 1.3 if you need to. 

Some of the interesting information I was able to extract -

File system indicators
Network indicators
Malware compile platform
Malware attribution (Pretty interesting)

Hook Analyser log files (generated during malware analysis) - http://beenuarora.com/thanks/MalwareAnalysis-HookAnalyser1.4.zip

Analysis video - 



Thursday, November 10, 2011

Hook Analyser 1.3

Here is the update of this release.

--Smart Hooking
--Bug fixes

Copy is available to contributors/donor.

Feel free to reach on http://beenuarora.com/contact/contact.php

Saturday, October 29, 2011

Hook Analyser 1.1 - Final

Here is the final release video of the tool.

The tool , as said before, can be useful for exploit research and malware analysis.

Download : Contact Here

Demo :

Demo :

Sunday, September 18, 2011

Hook Analyser 1.1

Finally , I got some time to work more on this project. I am excited to say that version 1.1 is ready for distribution on request.

It's completely automated where you need not to mention any specific API, it does all by itself and stores result in log file.

Needless to say : Support pattern searches , dump memory content and more..

Contact here

Demo 1.1 (Alpha ) -   http://www.youtube.com/watch?v=FOdn89AfdYY

                                 
                                   

Monday, September 12, 2011

Hook Analyser

Hook analyser is a hook tool which could be potentially helpful in reversing application and analysing malwares.

The tool can hook to an API in a process and can do following tasks.

1. Hook to API in a process
2. Hook to API and search for pattern in memory of a process
3. Hook to API and dump buffer (memory).

Download : Click Here

Screenshot: