Home page logo
/

basics logo Security Basics mailing list archives

RE: Collecting Malware
From: "Ian Bradshaw" <ian () ianbradshaw net>
Date: Thu, 16 Jul 2009 18:34:50 +0100

Hi,

I've never done it (I don't trust myself enough to be able to make sure it
didn't infect other machines on the network; firewalled or not!), but if I
was going to I'd setup a VMWare shell with a vulnerable machine and stick
things like RegMon
(http://technet.microsoft.com/en-us/sysinternals/bb896652.aspx) or Process
Monitor (http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx) on
there. Given the amount of stuff my router picks up then it wouldn't take
long for a vulnerable pc to fall victim - almost real-time I'd have thought!

For spam ... register here http://www.projecthoneypot.org/ with some MX
records ... leave it a week or so for them to propagate and then redirect
them to your own mail server / whatever. Although, it would be good
etiquette to leave them a couple of MX's spare for their trouble and the
general good of the world.

I.

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of Brian Pohlman
Sent: 16 July 2009 1:14 PM
To: security-basics () securityfocus com
Subject: Collecting Malware

I'm looking to get "spammed" or "attacked" so to speak for the purpose
of collecting malware for analysis. I've set up a few vulnerable
machines on my network, made some changes to my router to expose those
machines. I've also signed up for various email addresses in hopes
that something comes (malicious attachments) through that way. My
question is, what is the best way to collect malware, if there is even
one solid method?

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate.  We look at how SSL works, how it benefits your company and how
your customers can tell if a site is secure. You will find out how to test,
purchase, install and use a thawte Digital Certificate on your Apache web
server. Throughout, best practices for set-up are highlighted to help you
ensure efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727
d1
------------------------------------------------------------------------





------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]