TekDefense

In this episode of Tektip, we take a look at Helge's Switchblade. I apologize for the somewhat poor quality of the recording, I was attempting to make the video very fast so I didn't miss any of the Shmoocon talks. Anyways, Switchblade is a windows application that is a toolkit for troubleshooting, analyzing, and mitigating Windows issues. Think of it as a toolkit that contains many freeware and open source tools.

We were lucky enough to get a pre-release copy of version .8 to show off for this video. While I too often need to do generic windows troubleshooting for friends and family, I always like to put a Malware Analysis spin on things when I can. So in this video I focus on how to utilize some of the tools in switchblade to do some basic malware analysis. For me, this is a great portable malware analysis toolkit.

If you want to follow along, feel free to download the malware samples I used in the downloads section.

Enjoy!