I've been real busy with my new job and I haven't been really participating in EH-Net lately, but that doesn't mean I don't come here and read the latest happenings. Today I would like to mention a cool tool for Windows that I use in my work almost everyday which really helps me explore malicious websites for my Incident Report. It's called 'Malzilla'.
As the authors puts it, Mazilla is a
Malware hunting tool
For Malware Incident Response, our security department required us to investigate the how, when, why, what, where of malware incidents. The majority of the incidents we see in our company is users visiting what appears to be innocuous websites containing embedded malicious obfuscated javacript code in order to exploit vulnerable computers. Before finding out about this tool, thanks to my colleague (Pedro), we'd use various tools and methods to investigate malicious sites which took some time to analyze. Thats where Mazilla comes in, using this tool really speed things up and it has made my job easier.
Mazilla can be downloaded here:
Make sure to check out the author's tutorial in this page and familiarize yourself with this tool.
Well, gotta go, I just wanted the EH-Net members to know about this cool tool.