Using Fireshark to Analyze Malicious Websites presented at REcon 2010

by Stephan Chenette,


Summary : In this 20 minute presentation I will review an open-source tool I've written called Fireshark.
Fireshark was written for researchers and security enthusiasts to help in reversing malicious website content, be it by the hundreds, thousands are simply a single URL. It enables a view of all aspects of a compromised or malicious website, tracking network requests/responses JS function calls and storing the screen shot, source code, and normalized deobfuscated source code/DOM view.