Online Analysis Of Suspicious Websites

One of the neatest ways to distribute malware nowadays is by serving it from a web site. Why push malware by files to the victims computer - just put the bad stuff on your web site, and entice the victim to surf there. If he does so, intentionally, he's more likely to trust you, and badda bing, download your malware to his computer.

The classic way of protecting us from malicious web sites was stopping us from surfing there, generally using Hosts file based web site blocking.

Besides web site blocking, and malware protection (both active and passive) on your computer, you need malware scanning of any web site that you access. And what better way to do this than by using the power of the web?

  • AVG / Exploit Prevention Labs provides LinkScanner, which can be accessed as a browser add-on or queried online. LinkScanner does a live scan on Google, Yahoo and MSN search results, rather than querying a database of previous scan results.
  • FireTrust provides SiteHound, which can be accessed as a Firefox or Internet Explorer toolbar.
  • McAfee provides Site Advisor, which can be accessed as a Firefox add-on, or queried online. SiteAdvisor has an accumulated database, a web site popularity meter ("nitecruzr.net" shows a 2 of 4 - "some users"), plus does real-time evaluation when requested. They also accept comments from site readers, and from site owners.
  • A partnership between top academic institutions, technology industry leaders, and volunteers provides StopBadware.org, which feeds the Google search engine results pages. Google uses the StopBadware database, and accepts input by site owners through Google Webmaster Tools.
  • Symantec provides Norton SafeWeb, which appears to be intended as a plugin to a Norton security suite, though it does provide for web based queries. SafeWeb accepts comments from site readers.
So there are choices. Try them, and see which one suits your needs to the best degree.


(Update 2009/09/18): Today, we note a significant increase in vigilance.


>> Top

4 comments:

B. Sch├╝lke said...

Hi Chuck,

great idea to report about different website online scanning tools.

In my weblog i gave german weblog readers the chance to profit by your post here.

Cheers from Frankfurt (Germany)
Bernhard

Garrett W. said...

Hi Chuck, I love your blog!

I use a Firefox addon called Web of Trust -- you might be interested in it.

Peter said...

Hi and thank you very much for your valuable advise. I downloaded the AVG LinkScanner and so far it works like a dream. I've only seen something like this with Norton.

Again thank you - it's been something I've wanted for sometime.

Take Care,
Peter

Garrett W. said...

since my last post I have found out that WOT (web of trust) gives far better results than any of the other major site checkers. Peter, I would NOT trust your life to AVG.