Author Topic: Malware Analysis Blogs  (Read 105796 times)

0 Members and 1 Guest are viewing this topic.

December 07, 2007, 04:21:45 am
Read 105796 times


  • Guest
"Quick reference bookmark" of all security/malware-related blogs mentioned around:
note also that quite a few of the following blogs also support RSS feeds.

Any other blogs/sites of similar content you might stumble upon,
don't just feel free to add them...feel obligated to do so:
knowledge and information should be free for all.
From time to time,submitted links will be 'moved' in the beginning of thread,
with appropriate credits of course to the people that made mention of them.  :)

List Last Updated -> 01 Jan 2009
Credits go up to -> brewt , cjeremy , JohnC , tjs, sowhat-x, SysAdMini and UsAr  :)

zairon's Blog
Malware analysis,reverse engineering,cryptography...

teamfurry's MW-Blog
...just scroll down the page,in order to get...a free haircut from toni :D
Make sure you also take a visit at his forum.

Edgar Bangkok's Blog
Malware hunter,some nifty tools in his blog also... ;)

Digital Intelligence and Strategic Operations Group

SecureWorks Blog

Websense Security Labs Blog
Very nice malware analysis/reviews here also,
certainly one of the best blogs out there,
when it comes to analyzing recently found 'in-the-wild' malware.  :)

Arbor Networks Blog
Excellent blog from the Arbor Security Engineering & Response Team (ASERT)...

Dancho Danchev's Blog
Articles regarding new malware/exploits found in the wild and security in general...

Spamhuntress' Blog
And a list of very useful tools in the wiki:

Secure Science Blog
Check out the papers/source code in the posts regarding GPCode and RansomWare.

Bharath M Narayan's Blog
Looks for new rogues,malicious websites etc...

Evilcodecave's Weblog
As the author says in the main page..."Just another RCE Weblog"  ;)
Here is his "Dark Cave" as well:

Jan Gerrit Göbel's Blog
Take also a note in his "Infiltrator" script,quite nifty tool... :)

RBNExploit Blog
Keeping track in the current state of evolution of the Russian Business Network...

Matchent's Blog
The author states..."Mostly about spam"... 8)

C.I.S.R.T. 's Blog
Chinese Internet Security Response Team here...

dxp2532 's Blog
Neosploit,Icepack,Mpack...and general other malware samples analysis.
Also the author of 'unhash',an open-source MD5/SHA1 hashes bruteforce tool...

Swatkat's Blog
Malware,fake codecs,rogue apps in general etc...
Author of the SysProt rootkit detector also.

Flash's Security Blog
Fake codecs,sites with rogue apps etc...

TrustedSource Blog
Check also the 'Storm Tracker' in their site...

DShield / SANS Diary
Internet Storm Center's blog... :)

m4v3rick100's Blog
Focuses in Gromozon and other malware as well...

'Push the Red Button' Blog
As he says...'Malware,encryption,reverse engineering,networking and other arcana'.
Author of CredDump,a port of 'CacheDump' under Python:

SpywareGuide's Greynets Blog
From FaceTime Security Labs - malware,phishing,botnets and more...  :)

MNIN Security Blog
Michael Hale Ligh's Blog - "Coding, Reversing, Exploiting"...

Storm Binary Tracker
cjeremy's site - tracking down the well-known malware...excellent work... ;)

Steven Adair's Blog (from Shadow Server Foundation)

Dynamoo's Blog
Per official statement...'Spam, security, scams, spin and stuff'.

iAntiVirus Blog
Research involving viruses, spyware and malware on Mac OS X systems.
The Swiss Security Blog: written in German language,ie.use Google Translate etc...

Temerc's Blog
And the main site as well...(it also provides malware removal instructions):

S!Ri 's Blog
From the author of the well-known 'SmitFraudFix' disinfection utility.


ScanSafe STAT Blog

s3c-watch Blog

SRI Malware Threat Center
Make sure you check out the info provided under the "Data Analysis" tab:
Snort signatures are provided,ip addresses,various kinds of statistics as well...

MX Lab's Blog
Per statement," aqcuired taste for viruses and spam"...  ;D

Ilion's Blog
Very nice work regarding tracking down infected sites,sql injections etc.
For Japanese-speaking people  ;)

PC Security Labs
Good friends of ours  ;)
Jeffrey's personal blog as well:

Gary Warner's Blog
Per statement:"A Blog about Cyber Crime and related Justice issues"

'I Kill Spammers' Blog

Malware analysis,security articles etc / for Russian language speaking people.

'Spyware Sucks' Blog

Roger Thompson's Blog
Blog from the Chief Research Officer at AVG - his previous blog as well:

Hosts News

Secure Home Networks' Blog

Ocean's InsecLab

Cedric Pernet's Weblog
Both English/French versions available...

Web Robots Abuse Blog
"Web robots are visiting sites to hack,spam,email harvest and to scrap your website contect for profit.
This blog is an attempt to keep track of them and to help webmasters by listing the abuse in google."

Analysis of malware, reverse engineering, etc

xpl0it Analysis
Dedicated to incident, exploit and malware analysis


FireEye Malware Intelligence Lab

Marco Cova's Blog
One of the autors of Wepawet


Blogs/sites related to JavaScript,PHP issues,browser bugs etc...

Gareth Heyes's Blog

Jake Smith's Blog

Ronald van den Heetkamp's Blog
Check the 'Archive' for previous posts,they're listed in a very nice taxonomy...


XSSed Project
"Zone-H" for...XSS attacks  ::)


Official blogs from AV/Security products' companies...

VirusList - Analyst's Diary
Maintained by Kaspersky Lab's analysts...

F-Secure's Blog

McAfee Avert Labs Blog

Sophos' Blog

TrendMicro's Blog

ESET's Blog

Sunbelt's Blog

ThreatFire / ThreatExpert Blogs
From the 'PC Tools' Advanced Research Team...

Prevx Blog

Finjan MCRC Blog

Microsoft's anti-malware Blogs as well... ;)

Anti-Malware Engineering Team Blog
Their older page as well (not all articles/content has been moved yet):


...the following aren't 'blogs',but the usual "good-old-design" websites...  :D

Peter Ferrie's Site
The personal site of the well-known virus analyst:
previously worked for Symantec,currently in Microsoft Corporation...
Has lots of virus analysis papers...  8)

Peter Szor's Site
The author of the "Art of Computer Virus Research and Defense" book:
lots of articles and papers in the "Research" area...

Offensive Computing
The biggest public repository of malware samples.
Even more,the first site that "broke" the taboo of sharing malware samples in public,
thereby making them accessible to individual researchers...
Are you in the need of getting access to a specific sample?Here's your best chance... :)

VX Heavens far the most widely known vx resource in the net,
along with the famous magazines of the 29A team...
Malware trends come and go,but most of the techniques already documented get recycled...

Frequently updated with newer stuff to read / for Russian language speaking people...

Excellent wiki,dedicated in tracking spammers' activity...

June 25, 2008, 04:32:22 am
Reply #1


  • Newbie

  • Offline
  • *

  • 4
Here is a security blog from Paretologic:

Authored by two members of our ParetoLogic S.W.A.T. team (Spyware Analysis Team), Malware Diaries gives you an inside look at what is going on in the world of spyware and malware and how to secure your computer and yourself from new and emerging online threats.

June 29, 2008, 09:11:07 am
Reply #2


  • Guest
Metallica's Blog
Moderator over at CastleCops,Cexx,GeeksToGo etc...need to say more?  :)

July 02, 2008, 07:11:28 pm
Reply #3


  • Special Access
  • Newbie

  • Offline
  • *

  • 4
    • Remove & Prevent Spyware
Metallica's Blog
Moderator over at CastleCops,Cexx,GeeksToGo etc...need to say more?  :)

Thanks.  8)

July 11, 2008, 03:27:41 pm
Reply #4


  • Special Members
  • Hero Member

  • Offline
  • *

  • 1964

July 22, 2008, 03:14:21 pm
Reply #5


  • Special Members
  • Hero Member

  • Offline
  • *

  • 1964
A blog regarding spam and rogue software.

July 22, 2008, 05:27:22 pm
Reply #6


  • Special Members
  • Hero Member

  • Offline
  • *

  • 1964

August 02, 2008, 09:04:32 pm
Reply #7


  • Special Members
  • Hero Member

  • Offline
  • *

  • 1964

August 06, 2008, 04:02:26 pm
Reply #8


  • Special Members
  • Sr. Member

  • Offline
  • *

  • 132

August 22, 2008, 08:41:29 pm
Reply #9


  • Special Members
  • Hero Member

  • Offline
  • *

  • 1964

September 07, 2008, 11:01:46 pm
Reply #10


  • Special Members
  • Hero Member

  • Offline
  • *

  • 1964

September 10, 2008, 09:15:41 pm
Reply #11


  • Special Members
  • Newbie

  • Offline
  • *

  • 4
Just a correction on this.

Websense Security Labs Blog
Very nice malware analysis/reviews here also,
they're somehow related to SecureWorks mentioned previously...

We are not in any way related to SecureWorks other than the fact we work with various security researchers on some issues.
Sr. Security Researcher
Websense Security Labs

September 10, 2008, 10:24:10 pm
Reply #12


  • Guest
Most probably at some moment I had mis-read something in some blog entry...  :-[
Obviously sorry for that,as this was my fault...fixed it  :)

October 16, 2008, 05:47:51 pm
Reply #13


  • Special Members
  • Hero Member

  • Offline
  • *

  • 1964

February 18, 2009, 12:34:34 pm
Reply #14


  • Newbie

  • Offline
  • *

  • 2
Kingsoft Internet Security Blog