Free resources for malware researchers
There are plenty of free resources for malware research, but they should be used with caution
Free resources for malware researchers
Many free data sources can provide useful information about malware samples they have already seen. They can be queried by file hash or other IOC. Do not upload samples to public tools, such as VirusTotal or public sandboxes. These tools allow others to download samples, which may include sensitive data. Instead, build your own sandbox using CAPE, or use a commercial sandbox service with a contract that protects the confidentiality of your data.
And obviously, be extra careful when handling malware.
Malware data repositories
- VirusTotal
- Malware Hash Registry (MHR)
- MalwareBazaar
- Malshare Warning: Downloads are raw samples, not password-protected archives
- URLhaus
- Malpedia
- Alien Vault Open Threat Exchange (OTX)
- ThreatFox
Malware samples
Multi-engine anti-virus scanners
File Reputation
Automated sandboxes
Website investigation
Others
This post is licensed under CC BY 4.0 by the author.