doomedraven
doomedraven
recomiendo echar un ojo a este - Good logging practice in Python http://victorlin.me/posts/2012/08/26/good-logging-practice-in-python
pafish is ultra dead, al-khaser is way much better for VM detection https://github.com/LordNoteworthy/al-khaser
https://github.com/mandiant/ioc_writer/blob/master/INSTALL
is not sdk guys, is WDK https://learn.microsoft.com/en-us/windows-hardware/drivers/download-the-wdk then add path to build ``` Go to project properties -> C/C++ -> General, and add ddk headers path to Additional Include Directories...
in my case i just added inside of the VS, nothing outside of that. but that was many months ago, i didn't use it after. , about WDKPATH just see...
guys, someone is spying here :D i have advice, in all dotnet malware parsers add AssertionError in pefile handling, i saw a lot of problems there recently, don't have case...
as i told, we dont support misp integration due to their frequent break of api, so if you find solution and want to share with community you are welcome to...
Instead of that you can just do poetry shell instead of source or poetry run pip install ditectly
Wow that's interesting Ya, we don't support/maintain misp due to to frequent API changes, at least in past, that gave us too much headache
i would say here `analyzer/windows/bin`