Glossary
Static Analysis
Examining a binary without executing it — using disassemblers, decompilers, and file-format parsers to understand its structure and logic.
Static analysis is the examination of a binary without running it. Analysts use a disassembler or decompiler to read code, inspect the symbol table, parse file format headers (PE Format or ELF Format), enumerate imports, compute entropy of sections, and search for strings or YARA signatures — all without triggering malicious behavior. Static analysis is safe and leaves no traces on infrastructure, but is harder when code is packed or obfuscated. It is complementary to dynamic analysis.