Update: REMnux v3 is out!

I’m preparing the next release of the REMnux Linux distribution. REMnux is a lightweight Linux distribution for assisting malware analysts in reverse-engineering malicious software. To date, the distro has been downloaded about 20,000 times in its live CD and virtual appliance forms.

I expect the new REMnux release (version 3) to incorporate the following major changes, while remaining mostly backwards-compatible with prior releases:

  • Based on the latest version of Ubuntu (11.10)

  • Use a more full-featured X desktop environment (LXDE instead of Enlightenment)

  • Use a more common IRC client (EPIC instead of Irssi)

  • Incorporate the latest version of Volatility memory analysis software and plugins (2.0 instead of 1.4 RC 1)

  • I’m still deciding whether to include the Wine Windows emulator at the “cost” of about 400MB)

  • Include several additional malware analysis tools that I’ve been experimenting with

  • Tell me if you’d like to test a beta release of REMnux v3 when it becomes available

  • Share with me your recommendations for improving REMnux, if you’re a current user of this distro

  • Let me know if you’d like to fine-tune the user interface of the new release, so it’s more user-friendly

  • Drop me a note if you’d like to suggest that I include a tool related to malware analysis that isn’t already in REMnux

Related Articles

REMnux v8: 15 Years of Building a Malware Analysis ToolkitUsing AI Agents to Analyze Malware on REMnux

About the Author

Lenny Zeltser is a cybersecurity executive with deep technical roots, product management experience, and a business mindset. He has built security products and programs from early stage to enterprise scale. He is also a Faculty Fellow at SANS Institute and the creator of REMnux, a popular Linux toolkit for malware analysis. Lenny shares his perspectives on security leadership and technology at zeltser.com.