A few sites that you can upload different kinds of files to for a quick automated analysis. This doesn't take the place of doing a thorough analysis in the event of an incident, but it can be an aid to speed up the analysis of alerts..
Virustotal: http://www.virustotal.com
Anubis: http://anubis.iseclab.org/ - binaries only
TotalHash: http://totalhash.com/upload/
PDF's: http://malwaretracker.com/pdf.php
PDF's: http://jsunpack.jeek.org/
PDF's: http://wepawet.iseclab.org/
Documents: http://malwaretracker.com/doc.php
JavaScript or Flash: http://wepawet.iseclab.org/
JavaScript or HTML: http://jsunpack.jeek.org/
Information, tools and how-to's for the new intrusion analyst. Mentoring by blogging.
No comments:
Post a Comment