Besides the expensive security solutions for IT infrastructure, there exists some open-source alternatives too. Shadowserver has launched a free Web-based malware analysis tool to cater to the needs of the vendor-controlled and proprietary systems.
The tool, called Malwr, should not be judged upon its name as it is designed to provide security professionals with a free and customisable open source malware analysis tool. The tool is actually a front-end for the open source Cuckoo malware analysis sandbox that serves as an alternative for users who don't have the resources or time to operate a Cuckoo installation.
“A lot of companies run [malware analysis] and it's becoming a really profitable market, leaving no space for free initiatives,” said Claudio Guarnier, developer of Malwr who created the tool because he found free malware analysis tools to be weak and commercial sandboxes too expensive.
While Malwr is running in a limited testing mode, Guarnieri said that the Shadowserver resources underpinning the tool would allow it to scale to 10,000 analyses per day. In the first 36 hours, Malwr received about 15,000 page views from 2,000 unique visitors who submitted around 150 files. Some 22 per cent of traffic was attack attempts.
The Cuckoo sandbox was developed in mid-2010 as a Honeynet Project for Google's Summer of Code and re-commenced development for the 2011 Google initiative.
Development of Malwr started in September last year, but Guarnieri said he always planned to build a Web front-end for Cuckoo.
No comments:
Post a Comment