Malware Forensics: 
Investigating and Analyzing Malicious Code
Resources
| Blogs |
MW-Blog- Blog about malware, packers and reverse engineering
Volatile Systems- Blog by Aaron Walters, et. al. from Volatile System, the authors and developers of the superb memory forensic tool, the Volatility Framework ("Volatility").
Windows Incident Response- Harlan Carvey's Blog dedicated to the topics of incident response and forensics on Windows systems
Microsoft Malware Protection Center: Threat & Response Blog
Computer Forensik Blog- Andreas Schuster's blog
Tao Security Blog- Richard Bejtlich's blog.
CommandLineKungfu- Ed Skoudis' blog
SANS Computer Forensics, Investigation, and Response- Rob Lee's Blog
Digital Intelligence and Strategic Operations Group (DISOG) - Blog of Nicholas Albright, formerly of Shadowserver Foundation.
Hacking Exposed Computer Forensic Blog
F-Response - Agile Risk Management's F-Response blog.
NTCore- Blog by the folks over at NTCore, the developers of the Explorer Suite, PE Detective and other fine freeware tools.
NZight- Ero Carrera's Blog
Honeyblog- Thorsten Holz's blog
Anti Rootkit Blog
Computer Forensics, Malware Analysis & Digital Investigations- Lance Mueller's Blog
Blog Blog Black Sheep- Nick Harbour (writer/developer of dcfldd, Red Curtain)
| Websites |
Internet Crime Complaint Center- Want to report a Cyber Crime? The
The Open Reverse Code Engineering Community (OpenRCE)
Offensive Computing- Community malicious code research and analysis web site (created by Valsmith and Danny Quist)
Emerging Threats- Emerging Threats is an "open source community project to produce the fastest moving and most diverse Snort Signature set and firewall rules available."
The Exe_Dump_Utility- Online PE Analysis Tool based upon Ero Carrera's PEFile tool.
The Honeynet Project
Honeypots: Tracking Hackers- Lance Spitzner's Honeypot resource site.
Findlaw- A legal research information portal
The Legal Information Institute- A legal research portal hosted by Cornell Law School
Linux Man Pages- hosted on Die.net
Microsoft Advanced Search Engine
Microsoft Windows APIs Reference
Index of *nix System Calls- Hosted by the The Open Group
SANS-Computer Forensics and e-Discovery with Rob Lee
The SANS Internet Storm Center
Virscan- Free online multi-engine malware scanner
Jotti- Free online multi-engine malware scanner
Virustotal- Free online multi-engine malware scanner
Filterbit- Freeonline multi-engine malware scanner
Norman Sandbox- Free online malware analysis sandbox
Threat Expert- Free online malware analysis sandbox
Anubis - Free online malware analysis sandbox
Joebox- Free online malware analysis sandbox
Sunbelt (CWS) Sandbox- Free online malware analysis sandbox
Doxpara- Information Security Researcher Dan Kaminsky's Web Site.
Counterhack- Information Security/Malware Researcher Ed Skoudis' Web Site.
Zeltser.net- Information Security/Malware Researcher Lenny Zeltser's Web Site.
| Publications |
Digital Investigation: The International Journal of Digital Forensics & Incident Response
International Journal of Digital Evidence
International Journal of Forensic Computer Science
Journal of Digital Forensic Practice
| Organizations |
American Prosecutors Research Institute (APRI)
American Academy of Forensic Science (AAFS)
Digital Forensics Research Workshop (DFRWS)
International High Technology Crime Investigation Association (HTCIA)
International Association of Computer Investigative Specialists (IACIS)
Information Assurance Technology Analysis Center (IATAC)
Information Systems Security Association (ISSA)
Infragard
International Organization of Computer Evidence
Scientific Working Group for Digital Evidence (SWGDE)