[RTF] Analysis of a Document-Based Malware Sample
Analysis of an RTF-based malware sample, focusing on its exploit chain and execution flow.
Security Research and Malware Analysis
Archive of posts on document malware analysis, exploit chains, CVE analysis, reverse engineering, and practical security research.
This section collects hands-on analysis notes for document-based malware, droppers, and exploit-driven execution flows. The current public posts focus on DOCM/RTF document malware; CVE analysis and reverse engineering posts belong in the same Security track as they are added. The focus is on static analysis, dynamic analysis, shellcode tracing, and the tools used to break down real samples.
Connection to AI Agent Security
Security posts connect directly to AI agent permissions, sensitive data, trace, and approval boundaries. When applying agents to real repositories, pair this section with approval boundaries and guardrails and agent trace design.
Featured Posts
[Macro] Analysis of a Document-Based Malware Sample
Analysis of a macro-based document malware sample, covering its execution flow and dropper behavior.