Re: OffensiveComputing

[val smith <mvalsmith () gmail com>]

I'm not sure it makes it dramatically easier. There are tons of blackhat
malware collections on the net so that stuff can be found there. This does
however make it dramatically easier for the legitimate community to conduct
research in the area of malware and defense (hopefully).

Even england realized recently that the cops need guns.

V.



On 12/10/05, Drsolly <drsollyp () drsolly com> wrote:
> On Fri, 9 Dec 2005, val smith wrote:
>
> > Hi there,
> >
> > I know some of the people on this list and i've lurked here for a long
> time
> > so I thought there might be some interest in a project i've been working
> on
> > for a little while.
> >
> > http://www.offensivecomputing.net
> >
> > I know there are a couple of things similar (like Pedram's openrce and
> > Hoglund's rootkits.com) but I haven't found anyone doing exactly this so
> I
> > thought there might be a need or use for it in the community.
> >
> > The basic idea is a community site where you can search for malware
> based on
> > name or md5sum and get zipped copies. People can upload malware and
> > collaborate on analysis in a sort of a blog style. (think community
> > commented disassemblies, graphs, ida databases, etc.)
> >
> > I know there are some problems with it such as md5sums aren't the best
> > method for cataloging malware but its a start. And honestly most of the
> > stuff I run across in general is not super sophisticated or polymorphic,
> > etc.
> >
> > I've got some malware collection stuff to help add to the database and I
> > have a small collection built up over the years that I am slowly adding