Books and Other Sources for Malware/Rootkit Removal

[Courtesy]

I've been reading this book called Hacking Exposed: Malware and Rootkits Secrets and Solutions. It goes into great detail on how malware is created and manipulated to infect, propagate across a network. It also explains the use of rootkits and most importantly how to remove them. I think it's a great read so far, especially for those who want to understand how malware works.

Do anyone have any other suggestions for a good read concerning malware? I've seen the Mark Russinovich video on Advanced Malware Removal. That was very informative. I also read the PC Magazine "Fighting Spyware Viruses and Malware". It's a little dated, but it's still informative on malware and the locations on the hard drive where you can find them (registry,system32,temp folder etc... ). Are there any other great sources you guys have come across? Other than Technibble of course...

 

[Courtesy]

Ok, these are some of the resources that have helped and continue to educate me on Malware Removal.

Books
Malware: Fighting Malicious Code
http://books.google.com/books?printsec=frontcover&id=TKEAQmQV7O4C#v=onepage&q=&f=false

The Rootkit Arsenal: Escape and Evasion in the Dark Corners of the System
http://www.amazon.com/Rootkit-Arsenal-Escape-Evasion-Corners/dp/1598220616/ref=pd_sim_b_3

HACKING EXPOSED MALWARE AND ROOTKITS
http://www.amazon.com/HACKING-EXPOSED-MALWARE-ROOTKITS-Michael/dp/0071591184

PC Magazine Fighting Spyware, Viruses, and Malware
http://www.amazon.com/Magazine-Fighting-Spyware-Viruses-Malware/dp/0764577697/ref=sr_1_2?ie=UTF8&s=books&qid=1264457853&sr=1-2

Websites
Bleeping Computer http://www.bleepingcomputer.com/virus-removal/
Virus Bullentin http://www.virusbtn.com/index
Malware Url http://www.malwareurl.com/
Malwarebytes Forums http://www.malwarebytes.org/forums/index.php?showforum=39
HijackThis Log Analyzer http://www.hijackthis.de/
Major Geeks http://forums.majorgeeks.com/showthread.php?t=35407
Anti-rootkit Index Tools http://www.antirootkit.com/software/index.htm
Videos
Mark Russinovich
http://www.microsoft.com/emea/spotlight/sessionh.aspx?videoid=359
Bryce Whitty
http://www.motionbox.com/videos/a696d1b61213e0c229?utm_campaign=over-playcap&utm_medium=player&utm_source=www.technibble.com

Posts
greggh
http://www.technibble.com/forums/showthread.php?t=8992&highlight=virus+removal

 

[jaydude23]

Thanks for putting this together. Awesome work!

 

[studiot]

Well I ordered the first book you posted so I will see.

Interesting the different in layout for the dot com and dot co dot uk versions of Amazon.

 

[Courtesy]

Thanks for putting this together. Awesome work!

No problem. I feel that the more information and tools you utilize, the better a technician you become. The info is out there, we just have to find it and use it!

 

[Courtesy]

Well I ordered the first book you posted so I will see.

Interesting the different in layout for the dot com and dot co dot uk versions of Amazon.

Good stuff studiot! I just checked out the UK version. The layout is a little different. I hope you were referring to the Hacking Exposed Book. That's the most recent one. I believe it was release last October 09'.

 

[dbdawn]

Thanks for putting a list together, will come in handy!

 

[MrUnknown]

Very nice list. Looking into the books you have listed.

I have been researching malware and such more not to remove it but to increase my ability to prevent it or do penetration testing.

 

[Courtesy]

Just added the Anti-rootkit website. Seems like it has been dead for quite sometime, but there is a list of rootkit detection software tools there that can be helpful.

 

[Courtesy]

Very nice list. Looking into the books you have listed.

I have been researching malware and such more not to remove it but to increase my ability to prevent it or do penetration testing.

That's cool. I'll like to learn more about malware forensics as well. A couple of those books really get into malware forensics a bit. I know the Hacking Exposed Book has a website www.malwarehackingexposed.com where you can download samples/images. You need some type of software to view them though (IDA PRO). There is a book listed on Amazon called Malware Forensics: Investigating and Analyzing Malicious Code. That may be right up your alley MrUnknown.

 

[studiot]

Courtesy I see you a new here.

Although relatively new myself, I have seen several threads like this listing either books and/or websites.

Try a forum search.