• Call to Those Who Visit and the Weekend To-do List

    by  • December 9, 2010 • Uncategorized

    Breaking out of my normal postings for a moment, I wanted to ask some of the companies who have been visiting this blog to establish a line of contact with me. I can’t be certain those from these companies are actually reading what I write, but if they are, I would like to work out ways to further target my research so they too can benefit or exchange samples. The following companies/entities who I have seen visit this blog that I would be interested in talking to are:

    • Adobe
    • FBI
    • Microsoft
    • Symantec
    • Kaspersky Labs
    • Trend Micro
    • Google
    • Any of the Universities

    I would like to point out that I wouldn’t mind talking to anyone interested in this research, but the companies identified above have time invested time into their own research or can provide samples for further analysis. My current to-do list is starting to get pretty long, but I have been thinking about a few directions this can go now that I have a tool that seems to identify malicious documents. Here are the things currently in the pipeline for the rest of the week and this weekend:

    • Write class to convert PDFiD XML output to a JSON object
    • Organize all malicious files
      • Refresh scan results
      • Download new samples
      • Identify more aspects to collect and update data
      • Input into database structure
    • Release malicious file structure statistics dump
    • Begin creating a PDF malware web front-end for users to run live queries on malicious file statistics
    • Identify ways to apply scoring tool on network-based products