Hi,

I'm looking for a site or a resource somewhere I can find that contains an archive of viruses doing the rounds. I can find plenty of descriptions about them from a/v vendors but I'm looking for the binaries and/or code as part of some honeynet research I'm doing.

Same goes for spyware etc ...

If anyone can help me out, or indeed if you have you own little collection I'd love to hear from you.

Cheers.

Unsecure places that not recommed to visit, can contain viruses.
Just surf the web and scan you temp folders or download small size files and test them with AVs.

So you can made you own collection of viruses.
Be carefull, you computer may not survive ;) hehe ouch....

Originally posted here (http://www.AntiOnline.com/showthread.php?threadid=264060#post806879) by MrBabis
Unsecure places that not recommed to visit, can contain viruses.
Just surf the web and scan you temp folders or download small size files and test them with AVs.

So you can made you own collection of viruses.
Be carefull, you computer may not survive ;) hehe ouch....

LOL! he is asking for virus collection. so there is no question of scanning them. if he gonna do that he will loose all of them :p

Try http://www.astalavista.com

if he gonna do that he will loose all of them

Er... There are several ways he can configure his AV to ignore them..... You might want to look into all the settings on your AV system..... It might surprise you..... ;)

Originally posted here (http://www.AntiOnline.com/showthread.php?threadid=264060#post806920) by Tiger Shark
Er... There are several ways he can configure his AV to ignore them..... You might want to look into all the settings on your AV system..... It might surprise you..... ;)
Hey thanks. I did'nt know that. Actually i don't use AV at all :D

Hey thanks. I did'nt know that. Actually i don't use AV at all

Nice to see someone get up off their rear and write their own OS from scratch..... I applaud you..... :D

There are *many* sites that host binaries. This is actually a good question because I know that there are other RE junkies here on AO like myself.

This one is my favorite:
http://vx.netlux.org/

Note that if you are a dummy, you will become infected when messing with these samples. They are the real McCoy so to say.

--TH13

www.astalavista.com

Check out the archives. Make sure you have any realtime AV scanning turned off or it will clean the files you DL. Be aware, that in the US, you can not even have the src or binary in your posession, regardless of the reasons.

A_T

Be aware, that in the US, you can not even have the src or binary in your posession, regardless of the reasons.

Where is that stated..... Did I miss something??????

Yes Tiger~ I saw that as well

If it were true there would be no US AV companies? and a lot of security researchers would be out of a job.

If there is legislation in that area, it must have some kind of "malicious intent", distribution/deployment, clause/rider in it?

It is certainly not illegal over here...................hell it would criminalise anyone who got themselves infected :eek:

Now there's a thought.............................. :D

hell it would criminalise anyone who got themselves infected

LOL, that was my thought too. You're right though, there has to be a rider bacause I know a lot of people who have their own little "stash" for AV checking.

Another quick thought:

What about the AVs that put stuff they cannot clean into quarantine, or create a backup/recovery record?

A bit off topic, from the original post but on topic..............the way the thread has moved.

Perhaps the last few posts have been related to.............................intent. Much like the police seperate drug users from pushers?

ie, if you have a folder with a couple of thousand pounds, (weight) of viruses. You are a pusher. When one or two, would be for your own consumption?

On the other hand if your name is Symantec?????????????

Trust, I've pondered the same, but I've been told by many people, on different occasions that if I were to have src for, let's say msblaster ;) (see early posts), or melissa, then I can be arrested.

Now that I've seen people a little more educated in the field, I'll have to check into it a bit more.

A_T

Its not illegal to have viruses on your systems, in any format right now, but give it time, I'm sure somehow it will become a matter of homeland security, or fall under the RIAA somehow....

However, the grey area surrounds the writing of viruses and moreso their distribution. If you write one you are ok, but as soon as you distribute it then you're in trouble. Being specific, the Federal Computer Abuse Act 1994 outlawed the "transmission of a program, information, code, or Command" that "cause(s) damage to a computer, computer system, network, information, data or program" 18 U.S.C Sec 1030(a)(5)(A). This ammendedthe 1986 Computer Fraud and Abuse Act which proved to be inneffective at times due to the fact that it focused on the crossing of a system level boundary and become outdated over time. The new law now defines the deliberate transmission of a virus as a crime itself (so if you release one watch out!).

Right now there are two levels of prosecution for those who create viruses.

i) For those who intentionally cause damage by transmitting a virus the punishment can amount to ten years in jail plus a fine.
ii) For those who transmit a virus with only "reckless disregard" to the damage it will cause the maximum jail time is a year in prison and there is a fine.

let me know if you want more info.

hell Man you must be crazy but only crazy guys discover somthing crazythings . i wont ask you why you are collecting virus but i can put some light on it.See i tried it myself only.First get a seperate pc and install Macafee virus soln And configure it to only detect scripts and block it,not to delete it that can by done by advanced option sregarding scanning.Next Put off your firewall and visit some sites specified by other antionline guys and then wallah,You got a new virus just then get a tool to password protect your folders and put the script/file on it and lock it.I prefer to block any acces to it.Tag the folder and keep a log of virus and pretty soon you will get a collection of virus

Source for folder Blocking tool-www.cnet.com
Thank You

be careful I already did this one I mess up myself.

I seem to remember http://www.phreak.org having a very good collection of viruses

very true. ive never heard of having viruses in your possession as being illegal. infact i use to have a collection back in the day from the aids virus to the zimbabwe(just a guess its been 10 years). but those are old school virii