Skip to content

Malware OSINT – how to find information on malicious software

  • by
ransomware OSINT

Another busy month, so this time I’m sharing a quick (but solid!) list of approximately 50+ resources that can be useful for gathering openly available information on malware campaigns, news, samples and more. Hoping to get back into classical old school OSINT very soon though, so keep an eye out.

In the meantime, bookmark or archive this list!

Sandbox, upload & analysis services

Online sandbox services and similar websites listed below allow you to upload potentially malicious files (and URLs) that can be executed safely away from your system. You can also compare known hashes and indicators of compromise based on what other users already sent in.

Note that paid access will be needed for more granular analysis. Also remember that advanced malware can detect a sandbox and alter its behaviour accordingly. Finally, DO NOT upload files that contain sensitive or private information – users with premium access to the services might be able to gain access to those secrets.

Repositories & news

A mix of news aggregators, malware samples sites and everything in between.

Companies & known industry brands

Below is a collection of websites run by cybersecurity companies and known industry brands. These companies and vendors collect and provide information on various types of malware, their characteristics, and ways to mitigate them. NOTE: I tried to include the ones that don’t hit you with their sales pitch every time you click on a link!

Social media accounts

Twitter users and communities on Twitter are overall great for sharing warnings, detections and advice about malware that can be useful to online investigators. A subjective list in no particular order (other than alphabetical) and only really a tiny, tiny part of what you can find on Twitter using #malware.

Blogs & community groups

A loose collection of online communities and blogs where known industry individuals share content and knowledge to raise awareness on malware-related topics. Some of the authors are more prolific and in depth than others. This section definitely could use some community suggestions and contributions as there are hundreds more of useful resources out there.

PLEASE DO SHARE ANY ADDITIONAL LINKS YOU CAN RECOMMEND VIA COMMENTS OR EMAIL!

Leave a Reply

Your email address will not be published. Required fields are marked *