CSE Releases Malware Analysis Tool
The Communications Security Establishment of Canada—basically, Canada’s version of the NSA—has released a suite of malware analysis tools:
Assemblyline is described by CSE as akin to a conveyor belt: files go in, and a handful of small helper applications automatically comb through each one in search of malicious clues. On the way out, every file is given a score, which lets analysts sort old, familiar threats from the new and novel attacks that typically require a closer, more manual approach to analysis.
Leave a comment