SecureSystems-Analyst Toolkit

“SecureSystems-Analyst Antimalware Toolkit provides new or professional malware analyst with powerful tools on collecting and reverse engineering malware.”

Download In here
Read more right here : http://www.cyberstealthlabs.org

Update 2 for Zero Wine Tryouts Alpha 4 prebuilt QEMU image

= Changes for 20120708 =
== Prebuilt QEMU image ==
* Updated Wine (1.5.8)
* Updated backup.tar.gz (Improved malware compatibility)

= How to install =

1. Download all files.
2. Download Wine Gecko.

Wine Gecko http://sourceforge.net/projects/zerowine-tryout/files/wine_gecko-1.6-x86.msi/download
SHA1 checksum http://sourceforge.net/projects/zerowine-tryout/files/wine_gecko-1.6-x86.msi.sha1/download

3. (Optional) Verify SHA1 checksums.
4. Execute the following commands as a root user.

dpkg -P wine
rm /usr/share/wine/gecko/wine_gecko-*
dpkg -i wine_1.5.8-1_i386.deb
cp wine_gecko-1.6-x86.msi /usr/share/wine/gecko/
rm /home/malware/backup/backup.tar.gz
cp backup_1.5.8.tar.gz /home/malware/backup/backup.tar.gz

5. Done!

Zero Wine Tryouts is an open source malware analysis tool. Just upload your suspicious file (e.g. Windows executable file, PDF file) through the web interface and let it analyze

Download Right Here | More informatian about : Zero Wine Tryouts

Our Post Before :

Update 1 for Zero Wine Tryouts Alpha 4 prebuilt QEMU image

= Changes for 2012-07-02 =
== Prebuilt QEMU image ==
* Updated Wine (1.5.7)
* Updated Wine Gecko (1.6)
* Updated backup.tar.gz

= How to install =

1. Download all files.
2. (Optional) Verify SHA1 checksums.
3. Execute the following commands as a root user.

dpkg -P wine
rm /usr/share/wine/gecko/wine_gecko-1.0.0-x86.cab
dpkg -i wine_1.5.7-1_i386.deb
cp wine_gecko-1.6-x86.msi /usr/share/wine/gecko/
rm /home/malware/backup/backup.tar.gz
cp backup_1.5.7.tar.gz /home/malware/backup/backup.tar.gz

4. Done!

Zero Wine Tryouts is an open source malware analysis tool. Just upload your suspicious file (e.g. Windows executable file, PDF file) through the web interface and let it analyze

Download Right Here | More informatian about : Zero Wine Tryouts

WinAppDbg Debugger – Windows application debugger engine written in Python

The WinAppDbg python module allows developers to quickly add Windows application debugging facilities to your Python scripts.

Download in here |

For Installation, How To Usage, Read more Right Here

pev – the PE analysis toolkit

pev is a multiplatform PE analysis toolkit that includes tools to retrieve and parsing information about Windows PE files.


Features :
libpe
– supports PE32 and PE32+ (64-bits) files
– written in pure C, compatible with ISO C99
– implements PE handling functions from scratch, so we don’t need Windows API

core (all pev tools)
– text and csv output, making pev tools highly scriptable

readpe
– parse all PE file headers
– show information about PE sections
– show data directories
– list imported functions

pepack
– detecs MEW packer onlypacker detection

pedis
– disassembly entire functions
– disassembly entire sections
– supports Intel and AT&T syntax

pescan
– alert zero sized sections
– alert sections with non-printable characters in name
– alert PE with no sections
– find TLS callbacks functions and fake TLS
– detect fake entrypoint (out of code section)
– detect DOS stub modification

pesec
– detect presence of ASLR and DEP/NX bits
– detect SEH capable binary
– detect stack cookies / canary for MVS 2010 (experimental)

rva2ofs and ofs2rva
– converts from RVA to raw file offset and vice-versa

 Download In here | Read more Right Here

System Optimizer – a complete diagnose for your infected PC

The perfect nourishment that protects, disinfects, enhances, fosters and accelerates your computer. System Optimizer intensely disinfects your computer and updates your PC on a single click. It has got a perfect combination of utilities that are developed to boost up your computer’s performance. The smart PC care allows you to optimize your computer on a single click. This advanced scanner deep scans your PC and alerts you about any prospective error, if present.

The software is loaded with Disk Defrag and Disk Cleaner which extends the life of your hard drive by assuring regular defragmentation. This is also helps in improving data access response time. The product offers registry defrag tool that helps get rid of fragments in your registry to increase the speed and performance of your PC. It compacts and defragments your registry to remove the registry holes and optimize the registry structure. As a result, it boosts up your system speed and performance as a whole.

Download in here | Read more right here

SecQua tries to quantify the security of a given Information System

This project is an implementation of a new security metric for information systems.
This work is mainly based on the following publications:
*C. Patsakis, Gregory Chondrocoukis, D. Mermigas, S. Pirounias, The role of weighted entropy in security quantification, International Conference On Information Security And Artificial Intelligence (ISAI 2010), December 17-19, 2010, Chengdu, China.
*C. Patsakis, D. Mermigas, S. Pirounias, N. Alexandris, E. Fountas, Towards a formalistic measuring of security using stochastic calculus, 3rd IEEE International Conference on Computer Science and Information Technology (ICCSIT 2010), Chengu, China, 9-11 July 2010.
The data that are being used are from the National Vulnerability Database (http://nvd.nist.gov), for latest exports you may visit http://nvd.nist.gov/download.cfm

Download In here | More info in here