Thursday, March 19, 2015

Online Security Tools (Malware, Sandboxes, Hash Checking, Cracking, DNSBL, SSL, BGP)



Online Security Tools (Malware, Sandboxes, Hash Checking, Cracking, DNSBL, SSL, BGP)

[ Last Update: 03/19/2015]

Some readers and friends convinced me recently to start posting some articles in english as well - to reach a wider audience. Lets start with a quick post containing a list of very useful online security tools. The services are very useful for incident responders, forensicators and security information practitioners. Enjoy:

Multiple AV Analysis:
http://www.virustotal.com
http://virusscan.jotti.org
http://virscan.org
http://scanner.novirusthanks.org

Sandboxes:
http://camas.comodo.com
http://www.threattracksecurity.com/resources/sandbox-malware-analysis.aspx
http://urlquery.net/
http://malwr.com
http://anubis.iseclab.org
http://mwanalysis.com
http://www.norman.com
http://www.sunbeltsoftware.com
http://www.threatexpert.com

PE File Analyzer:
http://pev.sf.net.


Document Analysis:
https://malwaretracker.com/doc.php
http://www.joedoc.org
https://www.vicheck.ca
http://wepawet.iseclab.org
http://jsunpack.jeek.org
http://www.adopstools.com/ (flash)
https://blog.honeynet.org.my/gallus/upload/about


WhiteLists/BlackLists Hash Checking:
http://fileadvisor.bit9.com
https://hash.cymru.com
http://isc.sans.edu/tools/hashsearch.html
http://bin-test.shadowserver.org
http://isc.sans.edu/tools/hashsearch.html
http://www.team-cymru.org/Services/MHR/
http://www.nsrl.nist.gov/
http://www.bit9.com/products/bit9-global-software-registry.php
https://www.owasp.org/index.php/OWASP_File_Hash_Repository

Cracking for WPA/WPA2, LM e NTLM:
https://www.cloudcracker.com

Other Hash Crackers Online (MD5,SHA1&256,LM,NTLM,MySQL):
http://www.objectif-securite.ch/
http://md5.thekaine.de/
http://hashcrack.ath.cx/onlinehashcrackers.htm

Multiple DNSBL Checking (Spam):
http://multirbl.valli.org
http://mxtoolbox.com

Network captures Analysis:
http://cloudshark.org
http://pcapr.net


SSL Testing:
https://www.ssllabs.com/ssldb/
http://www.serversniff.net/content.php?do=ssl


IPs/URLs Analysis:
http://trasir.com/
http://www.ipvoid.com
http://www.urlvoid.com
http://www.google.com/safebrowsing/diagnostic?site=example.com
http://www.unmaskparasites.com
http://www.hackerfantastic.com

Autonomous Systems and BGP Monitoring:
http://bgpmon.net
http://cyclops.cs.ucla.edu
http://maliciousnetworks.org
at

2 comments:

  1. Anonymous3/13/2012 9:57 AM

    hi Sandro...
    great post!!!
    I'd add the MWAnalysis sandbox: http://www.mwanalysis.com/
    thank you!!

    ReplyDelete
  2. Anonymous3/13/2012 10:04 AM

    Great compilation! Thanks for sharing..

    ReplyDelete