Figured I’d keep a copy of this on here for the next time I need to do malware investigation.

  • – checks URL’s against lots of blacklists, emergingthreats, malwaredomainlist and zeustracker/etc…
  • – Same as above but for IP addresses
  • – Searches above databases and records logs of abuse claims. Useful as it can sometime give you extra URI’s for a host to comb your logs for. Also usefully… Continue reading

The other day i had to perform some brief and remote social engineering tasks. (1 day and telephone only)

I was attempting to trick a target into downloading a malicious executable by calling up, pretending to be BT (British Telecom) and then requesting that the user downloads a Speed Test in order for me to perform some “diagnostics”.

I provided the link to the customer as, unfortunately the… Continue reading