Open Source Malware Search Engine

← Back to Stories (view on slashdot.org)

Open Source Malware Search Engine

Posted by ryuzaki0 on Monday July 17, 2006 @11:06PM from the in-case-your-computer-isn't-infected-already dept.

chr0.ot writes "Metasploit creator HD Moore has released an open-source search engine that finds live malware samples through Google queries. From the article: 'The new Malware Search project provides a Web interface that allows anyone to enter the name of a known virus or Trojan and find Google results for Web sites hosting malicious executables.' The tool then searches for actual malware signatures and uses the signature output from ClamAV to find the name of the malware. This is then used in conjunction with a PE signature matching method to form a Google query. Afterwards the malware can then be downloaded directly from Google."

8 of 123 comments (clear)

Min score:

Reason:

Sort:

So.. by michaelhood · 2006-07-17 23:14 · Score: 5, Funny

Let me get this straight.. now Google is good for porn AND viruses?

How do the other engines stay in business?!?
1. Re:So.. by Anonymous Coward · 2006-07-18 01:47 · Score: 5, Funny
  
  ..now Google is good for porn AND viruses?
  
  So, basically, the Internet is exactly like real sex now, only easier to get.
Finding malware with search engine? by broothal · 2006-07-17 23:16 · Score: 5, Insightful

I wonder how they got that idea. I've never heard of it before.
1. Re:Finding malware with search engine? by Anonymous Coward · 2006-07-17 23:43 · Score: 5, Informative
  
  Netsense search isn't open source, as is pointed out in the article.
  
  Also, this program supposedly highlights how relatively little malware Google actually indexes, contrary to the two earlier articles you cite. Thus this is an additional development, not a dupe.
I wish google would incorporate this into searches by transporter_ii · 2006-07-17 23:37 · Score: 5, Interesting

I in no way think that google should block sites, but it would be nice if they would scan sites witht this -- especially for sites that install stuff through holes in IE -- and put a little icon on search results that return an infected site. That way you could at least have a heads up before you clicked on a search result about what you were getting into. It would also be great for Firefox, when everyone gets to see how many sites are exploiting IE.

Transporter_ii

--
Doctors destroy health, lawyers destroy justice, universities destroy knowledge, religion destroys spirituality
Re:Thank God! by Ash-Fox · 2006-07-18 00:18 · Score: 5, Insightful

I just bought a new PC, and i have no viruses yet.
How do you know?

--
Change is certain; progress is not obligatory.
I use Windows by Cro+Magnon · 2006-07-18 00:20 · Score: 5, Funny

I don't need a search engine to find malware.

--
Slow down, cowboy! It has been 4 hours since you last posted. You must wait another few hours.
Re:Since we're off on a tangent anyway by Filip22012005 · 2006-07-18 01:00 · Score: 4, Funny

I've got in the habit now when reading slashdot of if I can't understand a post, reading it as if i was speaking it (but silently of course).

I'm trying to read this sentence as if you were speaking it. And you sound sort of silly.

--
When the policeman of the tie, rule you violate, hello punishment of the kitty?