BlogHide Resteemskevin-mn (55)in hive-133802 • 4 years agoPE file format analysis (003)Continuing from the previous post ( let's go!!! IMAGE_OPTIONAL_HEADER structure Magic: Flag word, common executable (010Bh), typically 0x010BH, or 0x020BH if 64-bit, and the value is 0x0107H…kevin-mn (55)in hive-133802 • 4 years agoPE file format analysis (002)Continuing from the previous post ( let's get started!!! IMAGE_FILE_HEADER structure Machine: (important) Machine model, each CPU has a unique Machine code indicating which CPU can execute…kevin-mn (55)in hive-133802 • 4 years agoPE file format analysis (001)I recently researched the PE file side of things and found that the PE format is worth summarizing for everyone, so let's get go!!! Concept PE file is the general name of executable program…kevin-mn (55)in att-ck • 4 years agoIntroduction of MITRE and ATT&CKRecently, I came across ATT&CK because of my research on security attack and defense technologies, and I don't know much about it, so I want to understand the origin of the concept first. Ha ha…
