Finding and Decoding Malicious Scripts- Digital Forensics Series

You are being exposed to malicious scripts in one form or other every day, whether it be in email, documents, or websites. Many malicious scripts at first glance appear to be impossible to understand. However, with a few tips and some simple utility scripts, you can deobfuscate them in just a few minutes. In this series you will learn how you can break the shell of obfuscation techniques the script authors use and not spend a lot of time doing it.

Malicious JavaScripts are becoming the tool of choice for attackers. Although sometimes referred to as “fileless malware”, they can leave behind forensic artifacts for examiners to find.

Tools you might be needing:

3. Didier Stevens Suit
5. Jscompress(javascript compression tool)

If you need the custom scripts and samples(for practice) that we have used in this series, please drop us an email, and we will be happy to supply them for you.

If you liked the content please give us a thumbs up and if you have any query, please post them in the comment section below.

Also, don't forget to subscribe to BlackPerl to getting update about our new topics on DFIR.

Stay CyberAware!!
--------------------------------------------------------------------------------------------------------------------------
Chapters:
Background- 0:00
Theory Discussion- 1:02
Goals- 1:13
Techniques- 2:23
Tools we will be using- 6:47
Demo- 11:58
Sample1- 15:44
Sample2- 19:48
Sample3- 27:31
Sample4- 34:02
Sample5- 49:06
Sample6- 56:43
Sample7- 01:00:18
Sample8- 01:05:22

-~-~~-~~~-~~-~-
Please watch: "The Next Big Event You Need to Prepare For"
-~-~~-~~~-~~-~-