Mike
Security Tools. Security Tools. WinPcap. Anubis: Analyzing Unknown Binaries. ZeuS Tracker :: Monitor. Below is a list of all ZeuS C&Cs as well as Fake URLs which are currently known to the ZeuS Tracker. You can browse the ZeuS Tracker to get a list of ZeuS C&Cs and FakeURLs in a specified Country or AS number. Additionally the ZeuS Tracker provides a feature which allows to filter the ZeuS C&Cs for specified Nameservers, Level, Status and many more. Each ZeuS C&C or FakeURL is tagged with a . The level indicates which kind of IP the Host is hosted on. Here is an overview about the levels and its meaning: Level Description Level 1 Bulletproof hosted Level 2 Hacked webserver Level 3 Free hosting service Level 4 Unknown Level 5 Hosted on a FastFlux botnet Additionally, every host is at least in one of the following category: Hosts which are tagged as CC are ZeuS Command&Control servers Hosts which are tagged as FU are referenced by ZeuS as FakeURLs You can also search the ZeuS Tracker for domains, IPs, urls, MD5 hashes or FakeURLs: Browse: ZeuS BinaryURLs | ZeuS ConfigURLs | ZeuS Dropzones.
Joebox a secure Sandbox Application for Windows to analyse the behavior of Malware. I-BlockList | Lists. Register | Recover Account HomeSoftwareListsSubscribeContact PhantomPeer VPN Service I-Blocklist has launched a VPN and proxy service named PhantomPeer. To find out more please visit the site at www.phantompeer.com Category: File Format: Archive Format: Zero Wine Tryouts Malware Analysis Tool - Browse Files. A free web analysis tool. Fireshark is a toolset, that captures web traffic from the core of your web browser, exposing inbound and outbound network and internal process events for post-process analysis. Main use: Mass Injection Analysis Redirection Chaining Deobfuscation Analysis Content Profiling Fireshark is free to use. It is currently supported on Firefox browsers and released under the GPLv3 License. FIRE: FInding RoguE Networks. Geo IP Tool - View my IP information. Exploit pcaps | pcapr. Exploit Database (exploitdb) Download.
Exploit. S malware scan. MalwareURL. MD:Pro - Home. Analyzing Malicious Documents Cheat Sheet by Lenny Zeltser. This cheat sheet outlines tips and tools for reverse-engineering malicious documents, such as Microsoft Office (DOC, XLS, PPT) and Adobe Acrobat (PDF) files. General Approach Locate potentially malicious embedded code, such as shellcode, VBA macros, or JavaScript. Extract suspicious code segments from the file. If relevant, disassemble and/or debug shellcode. If relevant, deobfuscate and examine JavaScript, ActionScript, or VB macro code. Understand next steps in the infection chain. Microsoft Office Binary File Format Notes Structured Storage (OLE SS) defines a file system inside the binary Microsoft Office file.
Data can be “storage” (folder) and “stream” (file). Excel stores data inside the “workbook” stream. PowerPoint stores data inside the “PowerPoint Document” stream. Word stores data inside various streams. Tools for Analyzing Microsoft Office Files OfficeMalScanner locates shellcode and VBA macros from MS Office (DOC, XLS, and PPT) files. Useful MS Office Analysis Commands References. Virus Watch. Here you can see the malicious programs we have detected - in real-time. Every time one of our analysts adds a signature the list is updated. The first column shows the exact time that a program was added to the antivirus databases.
The second column shows the time that an antivirus database update containing this detection was released. If you don't see the name of a specific malicious program, you can filter the list to find the detection and update times. For example, typing "Bagle" will produce a list of all programs in the Bagle family, whether they are Email-Worms or Trojan-Downloaders. You can also filter using wildcards. Please note that this is not a complete listing of all malicious programs which can be detected by Kaspersky Lab products, but the archive of the VirusWatch service which was launched in .
Pearltrees videos. Help.