Didier Stevens

About Didier Stevens

Didier Stevens is a malware expert working for NVISO. Didier is a SANS Internet Storm Center senior handler and Microsoft MVP, and has developed numerous popular tools to assist with malware analysis.

Latest Articles

Analyzing a “multilayer” Maldoc: A Beginner’s Guide

April 6, 2022 Blue Team

In this blog post, we will not only analyze an interesting malicious document, but we will also demonstrate the steps…

XOR Known-Plaintext Attacks

October 12, 2023 Forensics

In this blog post, we show in detail how a known-plaintext attack on XOR encoding works, and automate it with…

About Didier Stevens

Latest Articles

Analyzing a “multilayer” Maldoc: A Beginner’s Guide

XOR Known-Plaintext Attacks

Connect