Tag: software

18 articles
Date Tue 19 November 2019
Author Alexandre Quint
Category Software

A retrospective on the 3 past years of development and an introduction to the future of Irma, our File Analysis Solution.


This blog post demonstrates through an example how the Epona obfuscating compiler, from the Epona Application Protection Suite, achieves the challenge of facilitating the everyday experience of its users while enabling better obfuscation schemes trade-offs.

Date Thu 20 October 2016
Author Gabriel Campana
Category Software

Cappsule was released a few weeks ago and we're happy of the positive attention received. However, relying on a custom hypervisor make its usage quite difficult across various distros. This blogpost explains how the same goals can be achieved on Linux with usual software. Impatient readers can directly checkout NoFear's GitHub.

Date Wed 21 September 2016
Author Gabriel Campana
Category Software

At Quarkslab, we don't only break software and exploit vulnerabilities, we also try to create innovative and efficient solutions to counter them. Cappsule is one of those solutions.

Date Mon 12 September 2016
Author Adrien Guinet
Category Software

Obfuscation is made of many different tricks. One we meet very often is mixed instructions who make computations mixing usual arithmetic (ADD, SUB, MUL, DIV) and boolean one (XOR, AND, NOT, OR). All tools get lost when it comes to cleaning this kind of very messy blocks of instructions, and that is why we designed Arybo. With Arybo, analyzing such expressions become way more easy.

Date Fri 05 February 2016
Author Alexandre Quint
Category Software

This post deals with the new features in IRMA 1.3.0 released earlier this month, from both a user and a contributor point of view.

Date Mon 23 March 2015
Author Le Maréchal
Category Software

A modest comparison between two ways of storing our unstructured data, from MongoDB to Elasticsearch.

Date Mon 23 February 2015
Author kamino
Category Software

IRMA (Incident Response & Malware Analysis) is a multi-scanner framework for identifying and analyzing suspicious files. In this article, we describe, step by step, how one can contribute to this open-source project by integrating his own analyzer.