"Quick reference bookmark" of all security/malware-related blogs mentioned around:
note also that quite a few of the following blogs also support RSS feeds.
Any other blogs/sites of similar content you might stumble upon,
don't just feel free to add them...feel obligated to do so:
knowledge and information should be free for all.
From time to time,submitted links will be 'moved' in the beginning of thread,
with appropriate credits of course to the people that made mention of them.
============================================================List Last Updated -> 01 Jan 2009Credits go up to ->
brewt ,
cjeremy ,
JohnC ,
tjs,
sowhat-x,
SysAdMini and
UsAr zairon's Bloghttp://zairon.wordpress.com/Malware analysis,reverse engineering,cryptography...
teamfurry's MW-Bloghttp://www.teamfurry.com/ ...just scroll down the page,in order to get...a free haircut from
toni 
Make sure you also take a visit at his forum.
Edgar Bangkok's Bloghttp://edetools.blogspot.com/Malware hunter,some nifty tools in his blog also...
DISOGhttp://www.disog.org/Plus...
http://www.disog.org/blog/Digital Intelligence and Strategic Operations Group
SecureWorks Bloghttp://www.secureworks.com/research/blog/Plus...
http://www.secureworks.com/research/threats/Websense Security Labs Bloghttp://www.websense.com/securitylabs/blog/Very nice malware analysis/reviews here also,
certainly one of the best blogs out there,
when it comes to analyzing recently found 'in-the-wild' malware.
Arbor Networks Bloghttp://asert.arbornetworks.com/Excellent blog from the Arbor Security Engineering & Response Team (ASERT)...
Dancho Danchev's Bloghttp://ddanchev.blogspot.com/Articles regarding new malware/exploits found in the wild and security in general...
Spamhuntress' Bloghttp://spamhuntress.com/And a list of very useful tools in the wiki:
http://spamhuntress.com/wiki/Tracing_toolsSecure Science Bloghttp://www.securescience.net/securescienceblog.htmlCheck out the papers/source code in the posts regarding GPCode and RansomWare.
Bharath M Narayan's Bloghttp://bharath-m-narayan.blogspot.comLooks for new rogues,malicious websites etc...
Evilcodecave's Webloghttp://evilcodecave.wordpress.com/As the author says in the main page..."Just another RCE Weblog"
Here is his "Dark Cave" as well:
http://evilcry.netsons.org/Jan Gerrit Göbel's Bloghttp://zeroq.kulando.de/Take also a note in his "Infiltrator" script,quite nifty tool...
RBNExploit Bloghttp://rbnexploit.blogspot.com/Keeping track in the current state of evolution of the Russian Business Network...
Matchent's Bloghttp://matchent.com/wpress/The author states..."Mostly about spam"...
C.I.S.R.T. 's Bloghttp://www.cisrt.org/enblog/Chinese Internet Security Response Team here...
dxp2532 's Bloghttp://dxp2532.blogspot.com/Neosploit,Icepack,Mpack...and general other malware samples analysis.
Also the author of '
unhash',an open-source MD5/SHA1 hashes bruteforce tool...
http://freshmeat.net/projects/unhash/Swatkat's Bloghttp://swatrant.blogspot.com/Malware,fake codecs,rogue apps in general etc...
Author of the SysProt rootkit detector also.
Flash's Security Bloghttp://flashbladez.blogspot.com/Fake codecs,sites with rogue apps etc...
TrustedSource Bloghttp://www.trustedsource.org/TS?do=threats&subdo=blogCheck also the '
Storm Tracker' in their site...
DShield / SANS Diaryhttp://www.dshield.org/diary.htmlhttp://isc.sans.org/diary.htmlInternet Storm Center's blog...
m4v3rick100's Bloghttp://maipiugromozon.blogspot.com/Focuses in Gromozon and other malware as well...
'Push the Red Button' Bloghttp://moyix.blogspot.com/As he says...'
Malware,encryption,reverse engineering,networking and other arcana'.
Author of CredDump,a port of '
CacheDump' under Python:
http://code.google.com/p/creddump/SpywareGuide's Greynets Bloghttp://blog.spywareguide.com/From FaceTime Security Labs - malware,phishing,botnets and more...
MNIN Security Bloghttp://mnin.blogspot.com/Michael Hale Ligh's Blog - "Coding, Reversing, Exploiting"...
Storm Binary Trackerhttp://sudosecure.net/cjeremy's site - tracking down the well-known malware...excellent work...
SecurityZonehttp://www.securityzone.org/Steven Adair's Blog (from Shadow Server Foundation)
Dynamoo's Bloghttp://www.dynamoo.com/blog/Per official statement...'Spam, security, scams, spin and stuff'.
iAntiVirus Bloghttp://blog.iantivirus.com/Research involving viruses, spyware and malware on Mac OS X systems.
Abuse.chhttp://www.abuse.ch/The Swiss Security Blog: written in German language,ie.use Google Translate etc...
Temerc's Bloghttp://temerc.blogspot.com/And the main site as well...(it also provides malware removal instructions):
http://temerc.com/S!Ri 's Bloghttp://siri-urz.blogspot.com/From the author of the well-known '
SmitFraudFix' disinfection utility.
Security4allhttp://security4all.blogspot.com/ScanSafe STAT Bloghttp://blog.scansafe.com/s3c-watch Bloghttp://s3cwatch.wordpress.com/SRI Malware Threat Centerhttp://mtc.sri.com/Make sure you check out the info provided under the "Data Analysis" tab:
Snort signatures are provided,ip addresses,various kinds of statistics as well...
MX Lab's Bloghttp://blog.mxlab.be/Per statement,"...an aqcuired taste for viruses and spam"...
Ilion's Bloghttp://ilion.blog47.fc2.com/Very nice work regarding tracking down infected sites,sql injections etc.
For Japanese-speaking people
PC Security Labshttp://www.pcsecuritylabs.net/Good friends of ours
Jeffrey's personal blog as well:
http://www.pcsecuritylabs.net/jeffrey/Gary Warner's Bloghttp://garwarner.blogspot.com/Per statement:"
A Blog about Cyber Crime and related Justice issues"
'I Kill Spammers' Bloghttp://ikillspammers.blogspot.com/SecureBloghttp://www.secureblog.info/Malware analysis,security articles etc / for Russian language speaking people.
'Spyware Sucks' Bloghttp://msmvps.com/blogs/spywaresucks/default.aspxRoger Thompson's Bloghttp://thompson.blog.avg.com/Blog from the Chief Research Officer at AVG - his previous blog as well:
http://explabs.blogspot.com/Hosts Newshttp://msmvps.com/blogs/hostsnews/Secure Home Networks' Bloghttp://securehomenetwork.blogspot.com/Ocean's InsecLabhttp://inseclab.netsons.org/Cedric Pernet's Webloghttp://bl0g.cedricpernet.net/Both English/French versions available...
Web Robots Abuse Bloghttp://web-robot-abuse.blogspot.com/"Web robots are visiting sites to hack,spam,email harvest and to scrap your website contect for profit.
This blog is an attempt to keep track of them and to help webmasters by listing the abuse in google."
RealSecurityhttp://realsecurity.wordpress.com/Analysis of malware, reverse engineering, etc
xpl0it Analysishttp://xanalysis.blogspot.com/Dedicated to incident, exploit and malware analysis
CERT-LEXSI Webloghttp://cert.lexsi.com/weblog/index.php/enFireEye Malware Intelligence Labhttp://blog.fireeye.com/research/Marco Cova's Bloghttp://www.cs.ucsb.edu/~marco/blog/One of the autors of Wepawet
================================================Blogs/sites related to JavaScript,PHP issues,browser bugs etc...
Gareth Heyes's Bloghttp://www.businessinfo.co.uk/index.phpJake Smith's Bloghttp://www.thespanner.co.uk/Ronald van den Heetkamp's Bloghttp://www.0x000000.com/index.phpCheck the 'Archive' for previous posts,they're listed in a very nice taxonomy...
GNUCitizenhttp://www.gnucitizen.org/XSSed Projecthttp://www.xssed.com/"Zone-H" for...XSS attacks
================================================Official blogs from AV/Security products' companies...
VirusList - Analyst's Diaryhttp://www.viruslist.com/en/weblogMaintained by Kaspersky Lab's analysts...
F-Secure's Bloghttp://www.f-secure.com/weblog/McAfee Avert Labs Bloghttp://www.avertlabs.com/research/blog/Sophos' Bloghttp://www.sophos.com/security/blog/TrendMicro's Bloghttp://blog.trendmicro.com/ESET's Bloghttp://www.eset.com/threat-center/blog/Sunbelt's Bloghttp://sunbeltblog.blogspot.com/ThreatFire / ThreatExpert Blogshttp://blog.threatfire.com/http://blog.threatexpert.com/From the 'PC Tools' Advanced Research Team...
Prevx Bloghttp://www.prevx.com/blog.aspFinjan MCRC Bloghttp://www.finjan.com/MCRCblog.aspxMicrosoft's anti-malware Blogs as well...
Anti-Malware Engineering Team Bloghttp://blogs.technet.com/mmpcTheir older page as well (not all articles/content has been moved yet):
http://blogs.technet.com/antimalware/================================================...the following aren't 'blogs',but the usual "good-old-design" websites...
Peter Ferrie's Sitehttp://pferrie.tripod.com/The personal site of the well-known virus analyst:
previously worked for Symantec,currently in Microsoft Corporation...
Has lots of virus analysis papers...
Peter Szor's Sitehttp://www.peterszor.com/The author of the "Art of Computer Virus Research and Defense" book:
lots of articles and papers in the "Research" area...
Offensive Computinghttp://www.offensivecomputing.net/The biggest public repository of malware samples.
Even more,the first site that "broke" the taboo of sharing malware samples in public,
thereby making them accessible to individual researchers...
Are you in the need of getting access to a specific sample?Here's your best chance...
VX Heavenshttp://vx.netlux.org/...by far the most widely known vx resource in the net,
along with the famous magazines of the 29A team...
http://vx.org.ua/29a/Malware trends come and go,but most of the techniques already documented get recycled...
InDetailshttp://indetails.info/Frequently updated with newer stuff to read / for Russian language speaking people...
SpamWikihttp://spamtrackers.eu/Excellent wiki,dedicated in tracking spammers' activity...
Topic: Malware Analysis Blogs (Read 105798 times)
