video

PlagueScanner - An Open Source Multiple AV Scanner Frameworkby Robert Simmons

PlagueScanner is an open source framework for organizing any number of AV scanners into one contiguous tool chain. It leverages...

video

Blackhat 2012 EUROPE - Entrapment: Tricking Malware with Transparent, Scalable Malware Analysisby Paul Royal

The detection of malware analysis environments has become popular and commoditized. Detection techniques previously reserved for more sophisticated forms of...

video

Blackhat 2010: Malware Attribution - Tracking Cyber Spiesby Greg Hoglund

Corporate, state, and federal networks are at great risk and a decade of security spending has not increased our security....

paper

VB2014 paper: Duping the machine - malware strategies, post sandbox detectionby James Wyke (Sophos, UK)

In his VB2014 paper, James Wyke explores the different strategies malicious samples employ when a sandbox has been detected. He...

paper

VB2014 paper: We know it before you do: predicting malicious domainsby Wei Xu (Palo Alto Networks, Inc., USA), Kyle Sanders (Palo Alto Networks, Inc., USA), Yanxin Zhang (Palo Alto Networks, Inc., USA)

From distributing malware to hosting command and control servers and traffic distribution, malicious domains are essential to the success of...

Malware Research Institute

PlagueScanner - An Open Source Multiple AV Scanner Frameworkby Robert Simmons

Blackhat 2012 EUROPE - Entrapment: Tricking Malware with Transparent, Scalable Malware Analysisby Paul Royal

Blackhat 2010: Malware Attribution - Tracking Cyber Spiesby Greg Hoglund

VB2014 paper: Duping the machine - malware strategies, post sandbox detectionby James Wyke (Sophos, UK)

VB2014 paper: We know it before you do: predicting malicious domainsby Wei Xu (Palo Alto Networks, Inc., USA), Kyle Sanders (Palo Alto Networks, Inc., USA), Yanxin Zhang (Palo Alto Networks, Inc., USA)