Author Topic: Investigate malicious webcode without being infected (Read 2123 times)

polonus · « **on:** June 29, 2006, 11:19:52 AM »

Hi malware fighters,

Go here for some information, and informative only.

http://www.infoworld.com/article/06/06/09/79039_24OPsecadvise_1.html

View results as txt file only. Be aware that infection is always possible also in
safer browsers like Lynx, buffer overflows can attack all sort of coding.
So leave it to the experts.

Links:
http://web-sniffer.net/
http://www.wannabrowser.com/
http://www.gnu.org/software/wget/

Some AV solutions, like Norton or MacAfee flag wget as riskware, because hackers use this program too, but it is absolutely legit, and numerous users use it for legit purposes. It is a shame AV programs do not discriminate here, but flag all instances of wget as malware. For manipulation of wget, see here:
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=UNIX%5FDLOADER%2EA&VSect=T

polonus

polonus · « **Reply #1 on:** July 03, 2006, 07:58:20 PM »

Hi malware fighters and web page analyzers,

If you would want the full benefit of wget, and like to install a graphical interface to work it from windows, install wgetgui
from here: http://www.jensroesner.de/wgetgui/
It is a bit like webcow, linkripper, or Intellitamper, but they all differ
in what they do for you.

enjoy,

polonus

Author Topic: Investigate malicious webcode without being infected (Read 2123 times)

polonus

Investigate malicious webcode without being infected

polonus

Re: Investigate malicious webcode without being infected