Blog Drainware

These days we are working really hard to finish Drainware 2.0. Our solution is now prepared to satisfy all your needs from a filtering scope.The backend is based on NoSQL for managing huge amount of data and is pretty scalable.

The filters are written on C and C++ packed into an icap server or webservices, for systems scripting we choosed python and for the web interface PHP5 + JQuery integrated into a customized MVC framework from scratch. We also have developed an SMTP proxy and a Microsoft Windows client to cover more leak vectors.

Read More »

Cuckoo Sandbox started as a Google Summer of Code project in 2010 within The Honeynet Project.
It was designed and developed by Claudio “nex” Guarnieri, who still mantains it and coordinates all efforts from joined contributors.

If you need compile mongodb 2.0.1 as shared library,you have to make some modifications in the code. We needed so we are sharing with you the patch

http://pastebin.com/ZxKwjeNi

jsunpack-n emulates browser functionality when visiting a URL. It’s purpose is to detect exploits that target browser and browser plug-in vulnerabilities. It accepts many different types of input:

• PDF files – samples/sample-pdf.file
• Packet Captures – samples/sample-http-exploit.pcap
• HTML files
• JavaScript files
• SWF files

Read More »

libemu is a small library written in C  (by Paul Baecher and Markus Koetter) offering basic x86 emulation and shellcode detection using GetPC heuristics. It is designed to be used within network intrusion/prevention detections and honeypots.

Read More »

Some time ago, NJ Verenini post on Websense’s Blog were he explains how to use SpiderMonkey to deobfuscate Javascript? As SpiderMonkey has no document object, Verenini shows a way to define your own document object to support document.write()

Read More »

Didier Stevens has developed a few tools for malware analyze of pdf files. Searching for keyword javascript yields 2 indirect objects referencing /JavaScript objects. The JavaScript is executed through an automatic annotation (/AA) when the page is rendered (e.g. when the PDF document is opened, as it contains only one page). Decompressing the second /JavaScript object (34) displays the code.

Read More »

Drainware Comments Filter will keep your blog free of undesirable comments (bad words, pornography, violence, intolerant words) using our Content Filter Engine (CFE) and everything absolutely FREE.

Is a GPL plugin based on Akismet and using our FREE API. Our API will check each comment is written in your WordPress Blog and will determine with our intelligent content filter engine if that comment is allowed for your website.

Install

1. Download plugin and unzip.
2. Upload the plugin file to your WordPress plugins directory inside of wp-content.
3. Activate it from the plugins menu inside of WordPress.
4. Forget that undesirable comments was ever a problem.

Download Drainware comments filter (drainware.comments.filter.zip)