urlquery.net

Malware Related > Malware Analysis

urlquery.net

(1/5) > >>

tyriel:
Hi,

I've recently lunched my new project which is much like webpawt and jsunpack, it uses a different approach and gathers alot of data from what a browser does when accessing a site.
It even deobuscates Blackhole exploit kit, which webpawet struggles with. It only handles webpages and not PDF or flash files. It currently is in beta phase but should be good enough to be usefull (and hopefully stable enough).

Sample report from a maliciouse site: http://urlquery.net/report.php?id=1857

Check it out at http://urlquery.net :)

Feedback is most welcome!

SysAdMini:
Sounds interesting. I'll try it.

Welcome to MDL !

raphael:
Your project is very interesting.

I am the maintainer of BGP Ranking:
- code: http://gitorious.org/bgp-ranking
- testing instance: http://bgpranking.circl.lu/ (sorry, it is quite limited, I will improve the website as soon as possible)

And would like to add your list of IPs in the sources of my project. Can you provide a link to the latest version of the list ?

tyriel:

--- Quote from: raphael on March 17, 2011, 10:57:12 pm ---Your project is very interesting.

I am the maintainer of BGP Ranking:
- code: http://gitorious.org/bgp-ranking
- testing instance: http://bgpranking.circl.lu/ (sorry, it is quite limited, I will improve the website as soon as possible)

And would like to add your list of IPs in the sources of my project. Can you provide a link to the latest version of the list ?

--- End quote ---

I currently don't have a away to get out the IP adresses from my DB. The search page atm only handles URLs. But it is possible to develop it, what do you need? any spesific format or listing. How do you want to access it?

Over the weekend I plan to implement support for the Adobe Reader plugin in the browser so you can specify which version it should use and report to javascript when it requests plugin version :)

raphael:

--- Quote from: tyriel on March 18, 2011, 12:54:34 pm ---
I currently don't have a away to get out the IP adresses from my DB. The search page atm only handles URLs. But it is possible to develop it, what do you need? any spesific format or listing. How do you want to access it?

Over the weekend I plan to implement support for the Adobe Reader plugin in the browser so you can specify which version it should use and report to javascript when it requests plugin version :)
--- End quote ---

I just need an URL like http://urlquery.net/ip.txt and ip.txt with one IP per line. And the list should be updated regularly (once a day is enough).

Navigation

[0] Message Index

[#] Next page

Go to full version