The online tools contains an updated list of online resources that can be used to help determine when a file is malicious or if website contains suspicious activity.
Anubis - “Anubis is a service for analyzing malware.”
Bitblaze -Online Unpacker
https://aerie.cs.berkeley.edu/submitsample.php
Eureka - Sandbox
http://eureka.cyber-ta.org/
Comodo - “If you have a suspicious file, please submit it online by using the form below. Once the file is submitted, COMODO Automated Analysis System will scan it and report back its findings.”
Ether - “Malware Analysis via Hardware Virtualization Extensions”
http://ether.gtisc.gatech.edu/web_unpack/
IPVoid - “...allows users to scan an IP Address with multiple scanning services to facilitate the detection of IP Addresses that have committed malicious activity and to check if a website is hosted in a compromised server, used for spam, phishing or to host malicious content.”
Joebox - Sandbox
http://www.joebox.org/samples.php
JSUnpack Online - Online version of the stand-alone tool jsunpack
http://jsunpack.jeek.org/dec/go
McAfee SiteAdvisor - “We test websites for spyware, spam and scams so you can search, surf and shop more safely.”
Norman SandBox - "Free uploads of program files that you suspect are malicious or infected by malicious components, and instant analysis by Norman SandBox. The result is also sent you by email."
http://www.norman.com/security_center/security_tools/submit_file/
PDF Analyzer - “View PDF objects as hex/text, PDF dissector and inspector, scan for known exploits”
http://www.malwaretracker.com/pdf.php
Sunbelt CWSandbox - "CWSandbox is an approach to automatically analyze malware which is based on behavior analysis: malware samples are executed for a finite time in a simulated environment, where all system calls are closely monitored."
ThreatExpert - “ThreatExpert is an advanced automated threat analysis system designed to analyze and report the behavior of computer viruses, worms, trojans, adware, spyware, and other security-related risks in a fully automated mode.”
http://www.threatexpert.com/submit.aspx
URLVoid - “allows users to scan a website address with multiple scanning engines such as Google Diagnostic, McAfee SiteAdvisor, Norton SafeWeb, MyWOT to facilitate the detection of possible dangerous websites.”
VirusTotal - Send a file and see the detection according the AV vendors.
Wepawet - "Wepawet is a service for detecting and analyzing web-based malware. It currently handles Flash, JavaScript, and PDF files."
2010/12/03 - [Tools] - [분석툴]The Tools(Online Tools - Monday, November 29, 2010 - Updated)
2010/12/03 - [Tools] - [분석툴]The Tools(Malware Analysis Tools - Monday, November 29, 2010 - Updated)
2010/07/22 - [Tools] - [분석툴]Malicious Document Analysis Tools(Malware Analysis Tools)
2010/05/26 - [Tools] - [분석툴]Malicious Document Analysis Tools(Microsoft Office or PDF)
댓글