share_log

BlackBerry Highlights Will Make Available Free Open-Source Tool For Cybersecuritiy Professionals, PE

BlackBerry Highlights Will Make Available Free Open-Source Tool For Cybersecuritiy Professionals, PE

黑莓亮點將為網絡安全專業人士提供免費的開源工具,PE
Benzinga Real-time News ·  2020/08/03 23:02

BlackBerry Limited (NYSE:BB, TSX:BB) today announced it is making available a free open-source tool for cybersecurity professionals, called PE Tree that significantly reduces the time and effort required to reverse engineer malware. Today's announcement demonstrates BlackBerry's continued commitment to the cybersecurity community in the fight against constantly evolving cyber threats.

黑莓有限公司(紐約證交所:BB, TSX:BB)今天宣布,它將為網絡安全專業人員提供免費的開源工具,稱為 聚乙烯樹 這大大減少了對惡意軟件進行反向工程所需的時間和精力。今天的公告顯示了 BlackBerry 對網路安全社群的持續承諾,以應對不斷發展的網路威脅。

BlackBerry Logo Black (PRNewsfoto/Blackberry Limited)

Reverse engineering of malware is an extremely time- and labor-intensive process, which can involve hours of disassembling and sometimes deconstructing a software program. The BlackBerry Research and Intelligence team initially developed this open source tool for internal use and is now making it available to the malware reverse engineering community.

反向工程的惡意軟件是一個非常耗時和勞動密集的過程,這可能涉及數小時的拆卸,有時解構軟件程序。黑莓研究與情報團隊最初開發這個開源工具供內部使用,現在正在向惡意軟件逆向工程社區提供。

"The cybersecurity threat landscape continues to evolve and cyberattacks are getting more sophisticated with potential to cause greater damage," said Eric Milam, Vice President of Research Operations, BlackBerry. "As cybercriminals up their game, the cybersecurity community needs new tools in their arsenal to defend and protect organizations and people. We've created this solution to help the cybersecurity community in this fight, where there are now more than 1 billion pieces of malware with that number continuing to grow by upwards of 100 million pieces each year."

黑莓研究運營副總裁 Eric Milam 表示:「網路安全威脅格局持續發展,網路攻擊變得越來越複雜,有可能造成更大的破壞。「隨著網絡犯罪分子的遊戲,網絡安全社區需要他們的武器庫中的新工具來捍衛和保護組織和人員。我們創建了這個解決方案來幫助網絡安全社區在這場戰鬥中,現在有超過 10 億個惡意軟件,該數字每年持續增長超過 1 億個。」

The PE Tree enables reverse engineers to view Portable Executable (PE) files in a tree-view using pefile and PyQt5, thereby lowering the bar for dumping and reconstructing malware from memory while providing an open-source PE viewer code-base that the community can build upon. The tool also integrates with Hex-Rays' IDA Pro decompiler to allow for easy navigation of PE structures, as well as dumping in-memory PE files and performing import reconstruction; critical in the fight to identify and stop various strains of malware. PE Tree was developed in Python and supports the Windows®, Linux®, and Mac® operating systems. It can be installed and run as either a standalone application or an IDAPython plugin, allowing users to examine any executable Windows file and see what its composition is.

PE 樹狀結構讓反向工程師能夠使用 pefile 和 PyQT5 在樹狀檢視中檢視可攜式執行檔 (PE) 檔案,進而降低傾印和重建惡意程式碼的準則,同時提供社群可以建置的開放原始碼 PE 檢視器程式碼庫。該工具還集成了 Hex-Rays IDA Pro 反編譯器,以便輕鬆導航 PE 結構,以及轉儲內存中的 PE 文件和執行導入重建; 對於識別和阻止各種惡意軟件菌株的鬥爭至關重要。PE 樹是在 Python 中開發的,並支持視窗®,Linux® 和 Mac® 操作系統。它可以安裝和運行作為一個獨立的應用程序或 Idapython 插件,允許用戶檢查任何可執行的 Windows 文件,看看它的組成是什麼。

Also this week at Black Hat USA 2020, Kevin Livelli, BlackBerry's Director of Threat Intelligence will be presenting on Decade of the RATs on August 5 at 11-11:40 am PT. BlackBerry will also be presenting a sponsored webinar about its partnership with Intel to stop cryptojacking malware, and drill down into BlackBerry® Optics AI-based EDR technology for Linux.

此外,本週在 2020 年美國黑帽上,黑莓威脅情報總監凱文·利維利(Kevin Livelli)將在 老鼠的十年 8 月 5 日,太平洋時間上午 11 點至 11 點 40 分。黑莓手機還將展示與英特爾的合作關係的贊助網絡研討會,以阻止加密劫持惡意軟件,並深入研究基於黑莓® 光學人工智能的 Linux EDR 技術。

譯文內容由第三人軟體翻譯。


以上內容僅用作資訊或教育之目的,不構成與富途相關的任何投資建議。富途竭力但無法保證上述全部內容的真實性、準確性和原創性。
    搶先評論