For Windows, there are three aspects we need to monitor: memory, disk, and registry. File monitoring tools look at created, modified, or deleted files and directories. On the other hand, registry monitoring tools look at created, updated, or deleted registry keys, values, and data. We can use tools such as FileMon and RegMon to do this job.
- Title Page
- Copyright and Credits
- Packt Upsell
- Contributors
- Preface
- Preparing to Reverse
- Identification and Extraction of Hidden Components
- The Low-Level Language
- Static and Dynamic Reversing
- Tools of the Trade
- RE in Linux Platforms
- RE for Windows Platforms
- Sandboxing - Virtualization as a Component for RE
- Binary Obfuscation Techniques
- Packing and Encryption
- Anti-analysis Tricks
- Practical Reverse Engineering of a Windows Executable
- Reversing Various File Types
- Other Books You May Enjoy
Monitoring system changes
-
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.