Analyzing Malicious Documents Cheat Sheet

https://zeltser.com/analyzing-malicious-documents/

AutoIt Malware: From Compiled Binary to Plain-Text Script

https://r3mrum.wordpress.com/2017/07/10/autoit-malware-from-compiled-binary-to-plain-text-noscript/

Angrgdb, Create an angr state from the current debugger state.

https://github.com/andreafioraldi/angrgdb

R2dec radare2 decompiler

~# r2pm -i r2dec

Dealing with ASLR When Analyzing Malware

https://digital-forensics.sans.org/blog/2014/02/17/malware-analysis-and-aslr-on-windows-8-1

X86 assembly/instructions

https://www.aldeid.com/wiki/X86-assembly/Instructions

C/C++ Calling Conventions

https://scc.ustc.edu.cn/zlsc/sugon/intel/compiler_c/main_cls/bldaps_cls/common/bldaps_calling_conv.htm

[ Youtube channels ]

LiveOverflow : https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w
OALabs : https://www.youtube.com/channel/UC--DwaiMV-jtO-6EvmKOnqg
MalwareAnalysisForHedgehogs : https://www.youtube.com/channel/UCVFXrUwuWxNlm6UNZtBLJ-A
Open SecurityTraining : https://www.youtube.com/channel/UCthV50MozQIfawL9a_g5rdg
DEFCONConference : https://www.youtube.com/user/DEFCONConference/playlists?pbjreload=10
Colin Hardy : https://www.youtube.com/channel/UCND1KVdVt8A580SjdaS4cZg
BinaryAdventure : https://www.youtube.com/channel/UCSLlgiYtOXZnYPba_W4bHqQ
John Hammond : https://www.youtube.com/channel/UCVeW9qkBjo3zosnqUbG7CFw
SANS Digital Forensics and Incident Response : https://www.youtube.com/channel/UCwSo89W3KgPrid41vskBDYA
TheSecurityTube : https://www.youtube.com/user/TheSecurityTube/videos
hak5 : https://www.youtube.com/channel/UC3s0BtrBJpwNDaflRSoiieQ
LearnThenTeach : https://www.youtube.com/channel/UCVf5kcdOr535bta-XIdeb4Q
H4rM0n1cH4cK : https://www.youtube.com/channel/UCTZCTzlZQF_7WnouKc-Ym_Q

Give Academy : https://www.youtube.com/channel/UC8yWAWQXsX8sLEng0s2gJxQ
Josh Stroschein : https://www.youtube.com/channel/UCI8zwug_Lv4_-KPT62oeDUA
Tushar Kashyap : https://www.youtube.com/channel/UCNPC4J2nNBanHf-ymiRFKoQ
IppSec : https://www.youtube.com/channel/UCa6eh7gCkpPo5XXUDfygQQA
std:: cat : https://www.youtube.com/channel/UCl9lriUoIc6l03UhOISJdqQ/videos
hasherezade : https://www.youtube.com/channel/UCNWVswPNgn5kutPNa5sprkg
danooct1 : https://www.youtube.com/channel/UCqbkm47qBxDj-P3lI9voIAw
0x41414141 : https://www.youtube.com/channel/UCPqes566OZ3G_fjxL6BngRQ
Motasem Hamdan : https://www.youtube.com/channel/UCNSdU_1ehXtGclimTVckHmQ
KirbiflintCracking : https://www.youtube.com/channel/UCKnHdBvDXj9Zl15g28XwqMQ

Useful Github repositories

https://github.com/tylerha97/awesome-reversing

https://github.com/rshipp/awesome-malware-analysis

https://github.com/FabioBaroni/awesome-exploit-development

C++Now 2018: http://www.youtube.com/watch?v=QFIOE1jKv30&list=PL_AKIMJc4roVSbTTfHReQTl1dc9ms0lWH

Cape sandbox
cape.contextis.com
ex : https://cape.contextis.com/analysis/28279/#

any run interactive malware analysis service
https://app.any.run/

Upload a ransom note and/or sample encrypted file to identify the ransomware that has encrypted your data.

https://id-ransomware.malwarehunterteam.com/index.php

Diaphora, the most advanced Free and Open Source program diffing tool
https://github.com/joxeankoret/diaphora

Pigaios a tool for matching and diffing source codes directly against binaries.

https://github.com/joxeankoret/pigaios

The official x64dbg plugin for IDA pro

https://github.com/x64dbg/x64dbgida

IDA Pro noscript to add some useful runtime info to static analysis

https://github.com/deresz/funcap