Malware Forensics:   
                             Investigating and Analyzing Malicious Code

MW-Blog- Blog about malware, packers and reverse engineering

Volatile Systems- Blog by Aaron Walters, et. al. from Volatile System, the authors and developers of the superb memory forensic tool,  the Volatility Framework ("Volatility").

Windows Incident Response- Harlan Carvey's Blog dedicated to the topics of incident response and forensics on Windows systems

Microsoft Malware Protection Center: Threat & Response Blog

Computer Forensik Blog- Andreas Schuster's blog

Tao Security Blog- Richard Bejtlich's blog.

CommandLineKungfu- Ed Skoudis' blog

SANS Computer Forensics, Investigation, and Response- Rob Lee's Blog

Digital Intelligence and Strategic Operations Group (DISOG) - Blog of
Nicholas Albright, formerly of Shadowserver Foundation.

Hacking Exposed Computer Forensic Blog

F-Response - Agile Risk Management's F-Response blog.

NTCore- Blog by the folks over at NTCore, the developers of the  Explorer Suite, PE Detective and other fine freeware tools.

NZight-  Ero Carrera's Blog

Honeyblog- Thorsten Holz's blog

Anti Rootkit Blog

Computer Forensics, Malware Analysis & Digital Investigations- Lance Mueller's Blog

Blog Blog Black Sheep- Nick Harbour (writer/developer of dcfldd, Red Curtain)


Internet Crime Complaint Center- Want to report a Cyber Crime? The Internet Crime Complaint Center (IC3) is a partnership between the Federal Bureau of  Investigation (FBI), the National White Collar Crime Center (NW3C), and the Bureau of Justice Assistance(BJA).

The Open Reverse Code Engineering Community (OpenRCE)

Offensive Computing-
Community malicious code research and analysis web site (created by Valsmith and Danny Quist)

Emerging Threats- Emerging Threats is an "open source community project to produce the fastest moving and most diverse Snort Signature set and firewall rules available."

The Exe_Dump_Utility- Online PE Analysis Tool based upon Ero Carrera's PEFile tool.

The Honeynet Project

Honeypots: Tracking Hackers
- Lance Spitzner's Honeypot resource site.

Findlaw- A legal research information portal

The Legal Information Institute- A legal research portal hosted by Cornell Law School

Linux Man Pages- hosted on

Microsoft Advanced Search Engine

Microsoft Windows APIs Reference

Index of *nix System Calls- Hosted by the The Open Group

SANS-Computer Forensics and e-Discovery with Rob Lee

The SANS Internet Storm Center

Free online multi-engine malware scanner

Free online multi-engine malware scanner

Free online multi-engine malware scanner

Filterbit- Freeonline multi-engine malware scanner

Norman Sandbox-
Free online malware analysis sandbox

Threat Expert-
Free online malware analysis sandbox

Anubis -
Free online malware analysis sandbox

Free online malware analysis sandbox

Sunbelt (CWS) Sandbox-
Free online malware analysis sandbox

Doxpara-  Information Security Researcher Dan Kaminsky's Web Site.

Information Security/Malware Researcher Ed Skoudis' Web Site.
Information Security/Malware Researcher Lenny Zeltser's Web Site.


Digital Investigation: The International Journal of Digital Forensics & Incident Response

International Journal of Digital Evidence

International Journal of Forensic Computer Science

Journal of Digital Forensic Practice


American Prosecutors Research Institute (APRI)

American Academy of Forensic Science (AAFS)

Digital Forensics Research Workshop (DFRWS)

International High Technology Crime Investigation Association (HTCIA)

International Association of Computer Investigative Specialists (IACIS)

Information Assurance Technology Analysis Center (IATAC)

Information Systems Security Association (ISSA)


International Organization of Computer Evidence

Scientific Working Group for Digital Evidence (SWGDE)