A forum for reverse engineering, OS internals and malware analysis 

Forum for announcements and questions about tools and software.
 #16267  by N3mes1s
 Thu Oct 25, 2012 9:22 am
New tool from the guys behind malware.lu dbs.
Presentation

Malwasm is a tool based on Cuckoo Sandbox available here.

Malwasm was designed to help people that do reverse engineering. Malwasm step by step:

the malware to analyse is executed through Cuckoo Sandbox
during the execution, malwasm logs all activites of the malware with pintool
all activities are stored in a database (Postgres)
a web service is available to visualize and manage the data stored in the database

Features

Malwasm provides these features:

offline programs debugging
possibility to go back or forward in the execution's time (with a time slide bar)
states of registers and flags
values of the stack/heap/data
"Following dump" options
fully works in the browser
project: http://code.google.com/p/malwasm
demo: http://malwasm.com/
presentation at hacklu: http://archive.hack.lu/2012/malware.lu-overview.pdf