Comments on: Malzilla Documentation for Web Based Malware Detection http://wikisecure.net/security/malzilla-documentation-for-web-based-malware-detection Chown the web!!! Wed, 16 May 2012 08:27:35 +0000 hourly 1 http://wordpress.org/?v=3.3.2 By: XyluX http://wikisecure.net/security/malzilla-documentation-for-web-based-malware-detection/comment-page-1#comment-244 XyluX Tue, 20 Apr 2010 06:23:36 +0000 http://wikisecure.net/security/malzilla-documentation-for-web-based-malware-detection#comment-244 Sairam, See... malware detection can be done in various methods. The modern tech malwares come up with so much of obfuscated codes thats its not possible to have a generic pattern to detect the presence of malwares in any web application. You need to do so much of parsing of all the java functions. Sometimes malware developers use so much of string concatenation which makes the detection again a pathetic job!!! you have to analyze the obfuscated response and deobfuscate it on the fly which is again a brain dead job. ;) By the way currently I am not working on the Malware stuffs. So I am kinda out of it these days due to my packed schedules of App vulnerability research related stuffs. I am sorry but I won't be able to put some time to push you the source code for it. I hope you understand my situation. But at the same time I hope the above hint will help you somehow. Let me know if I can help you in anyways! - XyluX Sairam,
See… malware detection can be done in various methods. The modern tech malwares come up with so much of obfuscated codes thats its not possible to have a generic pattern to detect the presence of malwares in any web application. You need to do so much of parsing of all the java functions. Sometimes malware developers use so much of string concatenation which makes the detection again a pathetic job!!! you have to analyze the obfuscated response and deobfuscate it on the fly which is again a brain dead job. ;)

By the way currently I am not working on the Malware stuffs. So I am kinda out of it these days due to my packed schedules of App vulnerability research related stuffs. I am sorry but I won’t be able to put some time to push you the source code for it. I hope you understand my situation. But at the same time I hope the above hint will help you somehow. Let me know if I can help you in anyways!

- XyluX

]]> By: sairam http://wikisecure.net/security/malzilla-documentation-for-web-based-malware-detection/comment-page-1#comment-170 sairam Thu, 25 Mar 2010 20:36:36 +0000 http://wikisecure.net/security/malzilla-documentation-for-web-based-malware-detection#comment-170 hii can u help me..i want to implement malware detection for website in a java web application . can u provide with the source code for it hii can u help me..i want to implement malware detection for website in a java web application . can u provide with the source code for it

]]>