1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Scanning For Malicious Code?

Discussion in 'BlackHat Lounge' started by stevesdata, Aug 12, 2009.

  1. stevesdata

    stevesdata Regular Member

    Joined:
    Nov 3, 2008
    Messages:
    357
    Likes Received:
    140
    Location:
    Next to Chuck Norris
    Hello

    I have been looking into this for a little while I am considering working on some outsourcing of web design but I am paranoid about reliable ways of checking for any malicious code?

    My coding knowledge is OK but nowhere near good enough to spot some of the crazy exploits you see and hear about.

    Is there a site you can use to scan similar to virus total? or is virus total an option if you zip the file up? My concern is if linking to a malicious file hosted elsewhere.

    Any help would be great as this is stopping me from potentially making a ton of cash (only trusting my own work).

    :)
     
  2. stevesdata

    stevesdata Regular Member

    Joined:
    Nov 3, 2008
    Messages:
    357
    Likes Received:
    140
    Location:
    Next to Chuck Norris
    Surely someone here must be able to help.

    I actually spent a long time looking into this and so far have been unable to find a solution as all require forensic style tools beyond my skill sets like combing through javascript / flash etc.

    In fact a useful tip I found is to disable javascript in your ad0be readers - can be done in options. Apparently this should stop a vast majority of nasty exploits as I know a lot of us are downloading a load of pdfs. Security experts are gobsmacked ad0be distribute this stuff enabled by default. Every computer I have ever seen seems to have enabled. Hope this helps someone but still really need some advice on this.

    People who outsource web design what do you look for? I am capable of combing through XHTML but PHP or WP is beyond my skills.

    Would virustotal / jotti / kaspersky / nod32 etc. be any use at all or is there an equivilent out there?

    Many thanks to anyone that can help.

    :)
     
    Last edited: Aug 14, 2009
  3. moromete

    moromete Junior Member

    Joined:
    Jul 19, 2008
    Messages:
    183
    Likes Received:
    150
    • Thanks Thanks x 2
  4. stevesdata

    stevesdata Regular Member

    Joined:
    Nov 3, 2008
    Messages:
    357
    Likes Received:
    140
    Location:
    Next to Chuck Norris
    Thanks you seriously rock!

    Rep added. Would be interested in as much info as poss in this area on other services, as many ways to check as poss. From my research I know there is some nasty stuff out there so dont want to get caught with my pants down ;)

    You might need to use the # tag for the URL.

    :)
     
    Last edited: Aug 14, 2009