<?xml version="1.0" encoding="UTF-8"?>
 <rdf:RDF xmlns="http://purl.org/rss/1.0/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:cc="http://web.resource.org/cc/" xmlns:syn="http://purl.org/rss/1.0/modules/syndication/" xmlns:admin="http://webns.net/mvcb/">
  <channel rdf:about="http://pinboard.in">
    <title>Pinboard (candice)</title>
    <link>https://pinboard.in/u:candice/public/</link>
    <description>recent bookmarks from candice</description>
    <items>
      <rdf:Seq>	<rdf:li rdf:resource="http://utils.kde.org/projects/okteta/"/>
	<rdf:li rdf:resource="http://csr.lanl.gov/vera/vera-manual.pdf"/>
	<rdf:li rdf:resource="http://www.offensivecomputing.net/shmoo2011/quist-shmoo2011.pdf"/>
	<rdf:li rdf:resource="http://www.isecpartners.com/storage/docs/presentations/iSEC_BH2011_Mac_APT.pdf"/>
	<rdf:li rdf:resource="http://software.imdea.org/~juanca/papers/ppi_usenixsec11.pdf"/>
	<rdf:li rdf:resource="http://www.trust.informatik.tu-darmstadt.de/fileadmin/user_upload/Group_TRUST/LectureSlides/Chapter02%20-%20RuntimeAttacks.pdf"/>
	<rdf:li rdf:resource="http://blogs.mcafee.com/mcafee-labs/a-new-rootkid-on-the-block"/>
	<rdf:li rdf:resource="http://www.pintool.org/"/>
	<rdf:li rdf:resource="http://blog.mylookout.com/2011/06/the-world-isn%E2%80%99t-ending%E2%80%94but-a-%E2%80%9Crapture%E2%80%9D-themed-trojan-plagues-android-phones/"/>
	<rdf:li rdf:resource="http://blog.didierstevens.com/2011/04/27/suspender-dll/#comments"/>
	<rdf:li rdf:resource="http://blogs.technet.com/b/markrussinovich/archive/2011/05/10/3422212.aspx"/>
	<rdf:li rdf:resource="http://blogs.technet.com/b/markrussinovich/archive/2011/03/08/3392087.aspx"/>
	<rdf:li rdf:resource="http://www.eweek.com/c/a/Security/McAfee-Night-Dragon-Cyber-Attack-Unsophisticated-But-Effective-303870/"/>
	<rdf:li rdf:resource="http://code.google.com/p/optimice/"/>
	<rdf:li rdf:resource="http://blog.didierstevens.com/programs/pdf-tools/"/>
	<rdf:li rdf:resource="http://code.google.com/p/tartetatintools/"/>
	<rdf:li rdf:resource="http://blog.didierstevens.com/programs/heaplocker/"/>
	<rdf:li rdf:resource="http://research.truesec.com/?p=22"/>
	<rdf:li rdf:resource="http://www.net-security.org/dl/insecure/INSECURE-Mag-30.pdf"/>
	<rdf:li rdf:resource="https://www.volatilesystems.com/default/omfw"/>
	<rdf:li rdf:resource="http://cseweb.ucsd.edu/~savage/papers/Oakland11.pdf"/>
	<rdf:li rdf:resource="http://contagiodump.blogspot.com/2010/08/malicious-documents-archive-for.html"/>
	<rdf:li rdf:resource="http://blog.sharpesecurity.com/2011/06/10/ram-dump-analysis-for-apple-os-x-systems/"/>
	<rdf:li rdf:resource="http://de.reddit.com/r/ReverseEngineering/comments/hg0fx/a_modest_proposal_absolutely_no_babies_involved/"/>
	<rdf:li rdf:resource="http://madoc.bib.uni-mannheim.de/madoc/volltexte/2011/3148/pdf/InternalsOfWindowsMemoryMangement2.pdf"/>
	<rdf:li rdf:resource="http://theinvisiblethings.blogspot.com/2011/06/usb-security-challenges.html"/>
	<rdf:li rdf:resource="http://blogs.mcafee.com/mcafee-labs/the-art-of-fake-anti-virus-software?"/>
	<rdf:li rdf:resource="http://msdn.microsoft.com/en-us/library/ee175820(v=VS.85).aspx"/>
	<rdf:li rdf:resource="http://blogs.msdn.com/b/ie/archive/2011/03/07/internet-explorer-9-security-part-1-enhanced-memory-protections.aspx"/>
	<rdf:li rdf:resource="http://isc.sans.edu/diary/Managing+CVE-0/10933"/>
	<rdf:li rdf:resource="http://msdn.microsoft.com/en-us/library/ms682050(v=VS.85).aspx"/>
	<rdf:li rdf:resource="http://securityxploded.com/enumheaps.php"/>
	<rdf:li rdf:resource="http://j00ru.vexillium.org/?p=769"/>
	<rdf:li rdf:resource="http://www.codeproject.com/KB/debug/windbg_part1.aspx"/>
	<rdf:li rdf:resource="http://forum.sysinternals.com/get-commandline-of-running-processes_topic6510.html"/>
	<rdf:li rdf:resource="http://www.codeproject.com/KB/threads/GetNtProcessInfo.aspx"/>
	<rdf:li rdf:resource="http://dfsforensics.blogspot.com/"/>
	<rdf:li rdf:resource="https://threatpost.com/en_us/blogs/hardware-vendor-offers-backdoor-every-product-052611"/>
	<rdf:li rdf:resource="http://windowsir.blogspot.com/2011/05/tools.html"/>
	<rdf:li rdf:resource="http://www.f-secure.com/weblog/archives/00002164.html"/>
	<rdf:li rdf:resource="http://lifehacker.com/5803569/lock-down-your-computer-like-the-nsa"/>
	<rdf:li rdf:resource="http://www.hispasec.com/lapsec/index_en_html"/>
	<rdf:li rdf:resource="http://blogs.rsa.com/rsafarl/fraud-news-flash-%E2%80%93-the-downfall-of-the-mighty-%E2%80%93-zeus-trojan%E2%80%99s-source-code-leaked-and-now-available-everywhere/"/>
	<rdf:li rdf:resource="http://carnal0wnage.attackresearch.com/node/453"/>
	<rdf:li rdf:resource="http://blog.damballa.com/?p=1276"/>
	<rdf:li rdf:resource="http://hackitoergosum.org/"/>
	<rdf:li rdf:resource="http://blog.zeltser.com/post/3762502297/windows-integrity-levels-for-spyware-protection-processe"/>
	<rdf:li rdf:resource="http://www.confickerworkinggroup.org/wiki/uploads/Conficker_Working_Group_Lessons_Learned_17_June_2010_final.pdf"/>
	<rdf:li rdf:resource="http://blog.fireeye.com/research/2011/01/the-dead-giveaways-of-vm-aware-malware.html?utm_source=feedburner&amp;utm_medium=feed&amp;utm_campaign=Feed%3A+FE_research+%28FireEye+Malware+Intelligence+Lab%29"/>
	<rdf:li rdf:resource="http://blog.zeltser.com/post/2924829475/endpoint-antimalware-product-wishlist"/>
	<rdf:li rdf:resource="http://windbg.info/doc/2-windbg-a-z.html"/>
	<rdf:li rdf:resource="http://x86asm.net/articles/x86-64-tour-of-intel-manuals/"/>
	<rdf:li rdf:resource="http://www.sophos.com/security/technical-papers/samosseiko-vb2009-paper.pdf"/>
	<rdf:li rdf:resource="http://www.kyrus-tech.com/andrew-ruef-on-stuxnet/"/>
	<rdf:li rdf:resource="http://cert.at/downloads/software/minibis_en.html"/>
	<rdf:li rdf:resource="http://www.sans.org/reading_room/whitepapers/malicious/clash-titans-zeus-spyeye_33393"/>
	<rdf:li rdf:resource="http://www.mandiant.com/products/free_software/mandiant_audit_viewer/"/>
	<rdf:li rdf:resource="http://journeyintoir.blogspot.com/2010/09/anatomy-of-drive-by-part-1.html"/>
	<rdf:li rdf:resource="http://blog.zeltser.com/post/1358737300/malware-analysis-reports"/>
	<rdf:li rdf:resource="http://wehntrust.codeplex.com/"/>
	<rdf:li rdf:resource="http://blogs.technet.com/b/srd/archive/2009/10/27/announcing-the-release-of-the-enhanced-mitigation-evaluation-toolkit.aspx"/>
	<rdf:li rdf:resource="http://community.websense.com/blogs/securitylabs/archive/2010/10/13/eleonore-exploits-pack-s-unescape-cipher.aspx?utm_source=twitterfeed&amp;utm_medium=twitter"/>
	<rdf:li rdf:resource="http://www.reddit.com/r/ReverseEngineering/"/>
	<rdf:li rdf:resource="http://www.sophos.com/security/technical-papers/digital_signature_abuse.html"/>
	<rdf:li rdf:resource="http://www.mlsec.org/malheur/"/>
	<rdf:li rdf:resource="http://sourceforge.net/projects/zerowine/"/>
	<rdf:li rdf:resource="http://www.firmcorp.net/2010/07/crimeware-how-to-reverse-engineer.html"/>
	<rdf:li rdf:resource="http://j00ru.vexillium.org/?p=641"/>
	<rdf:li rdf:resource="http://www.kaspersky.com/VB_2010"/>
	<rdf:li rdf:resource="http://pferrie2.tripod.com/papers/lnk.pdf"/>
      </rdf:Seq>
    </items>
  </channel><item rdf:about="http://utils.kde.org/projects/okteta/">
    <title>KDE Utilities - Okteta</title>
    <dc:date>2012-06-28T03:00:00+00:00</dc:date>
    <link>http://utils.kde.org/projects/okteta/</link>
    <dc:creator>candice</dc:creator><dc:subject>hexeditor malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:c3f8c435dff5/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:hexeditor"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://csr.lanl.gov/vera/vera-manual.pdf">
    <title>Vera manual</title>
    <dc:date>2011-10-23T06:14:00+00:00</dc:date>
    <link>http://csr.lanl.gov/vera/vera-manual.pdf</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:458007110d5f/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.offensivecomputing.net/shmoo2011/quist-shmoo2011.pdf">
    <title>Vera presentation</title>
    <dc:date>2011-10-23T06:00:40+00:00</dc:date>
    <link>http://www.offensivecomputing.net/shmoo2011/quist-shmoo2011.pdf</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:be40ada6a8fa/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.isecpartners.com/storage/docs/presentations/iSEC_BH2011_Mac_APT.pdf">
    <title>Mac APT blackhat 2011</title>
    <dc:date>2011-08-09T18:08:04+00:00</dc:date>
    <link>http://www.isecpartners.com/storage/docs/presentations/iSEC_BH2011_Mac_APT.pdf</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:46e1985d9b35/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://software.imdea.org/~juanca/papers/ppi_usenixsec11.pdf">
    <title>pay per install analysis paper</title>
    <dc:date>2011-08-01T07:22:11+00:00</dc:date>
    <link>http://software.imdea.org/~juanca/papers/ppi_usenixsec11.pdf</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:75c5c7993113/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.trust.informatik.tu-darmstadt.de/fileadmin/user_upload/Group_TRUST/LectureSlides/Chapter02%20-%20RuntimeAttacks.pdf">
    <title>ROP / runtime attacks</title>
    <dc:date>2011-06-27T05:45:39+00:00</dc:date>
    <link>http://www.trust.informatik.tu-darmstadt.de/fileadmin/user_upload/Group_TRUST/LectureSlides/Chapter02%20-%20RuntimeAttacks.pdf</link>
    <dc:creator>candice</dc:creator><description><![CDATA[slides on this]]></description>
<dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:3e33e7848828/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blogs.mcafee.com/mcafee-labs/a-new-rootkid-on-the-block">
    <title>A new root'Kid' on the block | Blog Central</title>
    <dc:date>2011-06-16T02:57:46+00:00</dc:date>
    <link>http://blogs.mcafee.com/mcafee-labs/a-new-rootkid-on-the-block</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:5a27c97ed386/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.pintool.org/">
    <title>Pin - A Dynamic Binary Instrumentation Tool</title>
    <dc:date>2011-06-15T21:35:58+00:00</dc:date>
    <link>http://www.pintool.org/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:8cfbd7d3aa53/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.mylookout.com/2011/06/the-world-isn%E2%80%99t-ending%E2%80%94but-a-%E2%80%9Crapture%E2%80%9D-themed-trojan-plagues-android-phones/">
    <title>The Official Lookout Blog | The world isn’t ending—but a “Rapture” themed Trojan plagues Android phones</title>
    <dc:date>2011-06-15T19:36:34+00:00</dc:date>
    <link>http://blog.mylookout.com/2011/06/the-world-isn%E2%80%99t-ending%E2%80%94but-a-%E2%80%9Crapture%E2%80%9D-themed-trojan-plagues-android-phones/</link>
    <dc:creator>candice</dc:creator><description><![CDATA[RT @threatpost: More Android Malware News: Rapture themed Trojan -- ]]></description>
<dc:subject>malware</dc:subject>
<dc:source>https://twitter.com/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:896dda487fb6/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.didierstevens.com/2011/04/27/suspender-dll/#comments">
    <title>Suspender.dll « Didier Stevens</title>
    <dc:date>2011-06-15T17:37:38+00:00</dc:date>
    <link>http://blog.didierstevens.com/2011/04/27/suspender-dll/#comments</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:0a14858b9a2a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blogs.technet.com/b/markrussinovich/archive/2011/05/10/3422212.aspx">
    <title>Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 3 - Mark's Blog - Site Home - TechNet Blogs</title>
    <dc:date>2011-06-14T06:48:02+00:00</dc:date>
    <link>http://blogs.technet.com/b/markrussinovich/archive/2011/05/10/3422212.aspx</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:3943a6909b0a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blogs.technet.com/b/markrussinovich/archive/2011/03/08/3392087.aspx">
    <title>The Case of the Sysinternals-Blocking Malware - Mark's Blog - Site Home - TechNet Blogs</title>
    <dc:date>2011-06-14T06:47:51+00:00</dc:date>
    <link>http://blogs.technet.com/b/markrussinovich/archive/2011/03/08/3392087.aspx</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:80c7d874b21d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.eweek.com/c/a/Security/McAfee-Night-Dragon-Cyber-Attack-Unsophisticated-But-Effective-303870/">
    <title>McAfee: Night Dragon Cyber-Attack Unsophisticated but Effective - Security - News &amp; Reviews - eWeek.com</title>
    <dc:date>2011-06-14T06:47:48+00:00</dc:date>
    <link>http://www.eweek.com/c/a/Security/McAfee-Night-Dragon-Cyber-Attack-Unsophisticated-But-Effective-303870/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:e897078dcca6/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://code.google.com/p/optimice/">
    <title>optimice - Deobfuscation plugin for IDA - Google Project Hosting</title>
    <dc:date>2011-06-13T21:10:44+00:00</dc:date>
    <link>http://code.google.com/p/optimice/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:9ac14240f440/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.didierstevens.com/programs/pdf-tools/">
    <title>PDF Tools « Didier Stevens</title>
    <dc:date>2011-06-13T18:18:56+00:00</dc:date>
    <link>http://blog.didierstevens.com/programs/pdf-tools/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:61ba5e0fb8c9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://code.google.com/p/tartetatintools/">
    <title>tartetatintools - a bunch of experimental pintools for malware analysis - Google Project Hosting</title>
    <dc:date>2011-06-13T03:23:23+00:00</dc:date>
    <link>http://code.google.com/p/tartetatintools/</link>
    <dc:creator>candice</dc:creator><dc:subject>pin malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:1e558779b2ba/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:pin"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.didierstevens.com/programs/heaplocker/">
    <title>HeapLocker « Didier Stevens</title>
    <dc:date>2011-06-13T00:43:38+00:00</dc:date>
    <link>http://blog.didierstevens.com/programs/heaplocker/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:0f0a47196c91/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://research.truesec.com/?p=22">
    <title>Reversing LSASS in-memory hashes « TrueSec Research</title>
    <dc:date>2011-06-12T20:39:57+00:00</dc:date>
    <link>http://research.truesec.com/?p=22</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:b132802a3db4/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.net-security.org/dl/insecure/INSECURE-Mag-30.pdf">
    <title>insecure magazine volume 30</title>
    <dc:date>2011-06-12T19:51:47+00:00</dc:date>
    <link>http://www.net-security.org/dl/insecure/INSECURE-Mag-30.pdf</link>
    <dc:creator>candice</dc:creator><description><![CDATA[analysis articles]]></description>
<dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:5bd8da24a858/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.volatilesystems.com/default/omfw">
    <title>Open Memory Forensics Workshop | OMFW</title>
    <dc:date>2011-06-12T05:46:59+00:00</dc:date>
    <link>https://www.volatilesystems.com/default/omfw</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:221d28460c3d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://cseweb.ucsd.edu/~savage/papers/Oakland11.pdf">
    <title>Click Trajectories: End-to-end analysis of the spam value chain</title>
    <dc:date>2011-06-10T01:57:30+00:00</dc:date>
    <link>http://cseweb.ucsd.edu/~savage/papers/Oakland11.pdf</link>
    <dc:creator>candice</dc:creator><dc:subject>spam malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:0153088512a2/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:spam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://contagiodump.blogspot.com/2010/08/malicious-documents-archive-for.html">
    <title>contagio: Version 4 April 2011 - 11,355+ Malicious documents - archive for signature testing and research</title>
    <dc:date>2011-06-10T01:55:01+00:00</dc:date>
    <link>http://contagiodump.blogspot.com/2010/08/malicious-documents-archive-for.html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:bb48e26a71e6/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.sharpesecurity.com/2011/06/10/ram-dump-analysis-for-apple-os-x-systems/">
    <title>Sharpe Security Blog» Blog Archive » RAM Dump Analysis for Apple OS X Systems</title>
    <dc:date>2011-06-10T01:54:44+00:00</dc:date>
    <link>http://blog.sharpesecurity.com/2011/06/10/ram-dump-analysis-for-apple-os-x-systems/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware mac</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:61f9230e45b2/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:mac"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://de.reddit.com/r/ReverseEngineering/comments/hg0fx/a_modest_proposal_absolutely_no_babies_involved/">
    <title>A modest proposal (Absolutely no babies involved) : ReverseEngineering</title>
    <dc:date>2011-06-08T05:39:00+00:00</dc:date>
    <link>http://de.reddit.com/r/ReverseEngineering/comments/hg0fx/a_modest_proposal_absolutely_no_babies_involved/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:cb1175bd8795/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://madoc.bib.uni-mannheim.de/madoc/volltexte/2011/3148/pdf/InternalsOfWindowsMemoryMangement2.pdf">
    <title>windows memory management</title>
    <dc:date>2011-06-08T05:32:25+00:00</dc:date>
    <link>http://madoc.bib.uni-mannheim.de/madoc/volltexte/2011/3148/pdf/InternalsOfWindowsMemoryMangement2.pdf</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:16a72cf6f6ba/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://theinvisiblethings.blogspot.com/2011/06/usb-security-challenges.html">
    <title>The Invisible Things Lab's blog: USB Security Challenges</title>
    <dc:date>2011-06-01T04:59:18+00:00</dc:date>
    <link>http://theinvisiblethings.blogspot.com/2011/06/usb-security-challenges.html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:9a5a3e133311/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blogs.mcafee.com/mcafee-labs/the-art-of-fake-anti-virus-software?">
    <title>The ‘Art’ of Fake Anti-Virus Software | Blog Central</title>
    <dc:date>2011-06-01T04:55:47+00:00</dc:date>
    <link>http://blogs.mcafee.com/mcafee-labs/the-art-of-fake-anti-virus-software?</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:8424b0b691c3/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://msdn.microsoft.com/en-us/library/ee175820(v=VS.85).aspx">
    <title>Getting Process Heaps (Windows)</title>
    <dc:date>2011-05-31T06:27:33+00:00</dc:date>
    <link>http://msdn.microsoft.com/en-us/library/ee175820(v=VS.85).aspx</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:a96b3f8bc5f5/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blogs.msdn.com/b/ie/archive/2011/03/07/internet-explorer-9-security-part-1-enhanced-memory-protections.aspx">
    <title>Internet Explorer 9 Security Part 1: Enhanced Memory Protections - IEBlog - Site Home - MSDN Blogs</title>
    <dc:date>2011-05-31T04:47:44+00:00</dc:date>
    <link>http://blogs.msdn.com/b/ie/archive/2011/03/07/internet-explorer-9-security-part-1-enhanced-memory-protections.aspx</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:a20d88deceb5/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://isc.sans.edu/diary/Managing+CVE-0/10933">
    <title>Managing CVE-0</title>
    <dc:date>2011-05-31T04:38:42+00:00</dc:date>
    <link>http://isc.sans.edu/diary/Managing+CVE-0/10933</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:8fe5ba72a89d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://msdn.microsoft.com/en-us/library/ms682050(v=VS.85).aspx">
    <title>Collecting Memory Usage Information For a Process (Windows)</title>
    <dc:date>2011-05-31T03:11:14+00:00</dc:date>
    <link>http://msdn.microsoft.com/en-us/library/ms682050(v=VS.85).aspx</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:562073798c3f/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://securityxploded.com/enumheaps.php">
    <title>Faster Method to Enumerate Heaps on Windows - www.SecurityXploded.com</title>
    <dc:date>2011-05-31T02:56:54+00:00</dc:date>
    <link>http://securityxploded.com/enumheaps.php</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:32c38d0d20e2/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://j00ru.vexillium.org/?p=769">
    <title>nt!NtMapUserPhysicalPages and Kernel Stack-Spraying Techniques | j00ru//vx tech blog</title>
    <dc:date>2011-05-30T17:32:21+00:00</dc:date>
    <link>http://j00ru.vexillium.org/?p=769</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:b00af2a77ca7/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.codeproject.com/KB/debug/windbg_part1.aspx">
    <title>Windows Debuggers: Part 1: A WinDbg Tutorial - CodeProject</title>
    <dc:date>2011-05-30T04:53:32+00:00</dc:date>
    <link>http://www.codeproject.com/KB/debug/windbg_part1.aspx</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:045761698258/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://forum.sysinternals.com/get-commandline-of-running-processes_topic6510.html">
    <title>get command-line of running processes - Sysinternals Forums - Page 1</title>
    <dc:date>2011-05-30T01:09:27+00:00</dc:date>
    <link>http://forum.sysinternals.com/get-commandline-of-running-processes_topic6510.html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:4c64ecb0f3a5/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.codeproject.com/KB/threads/GetNtProcessInfo.aspx">
    <title>Get Process Info with NtQueryInformationProcess - CodeProject</title>
    <dc:date>2011-05-30T00:51:45+00:00</dc:date>
    <link>http://www.codeproject.com/KB/threads/GetNtProcessInfo.aspx</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:7f92669aeb36/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://dfsforensics.blogspot.com/">
    <title>Digital Forensics Solutions</title>
    <dc:date>2011-05-28T05:20:39+00:00</dc:date>
    <link>http://dfsforensics.blogspot.com/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:bb229881a803/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://threatpost.com/en_us/blogs/hardware-vendor-offers-backdoor-every-product-052611">
    <title>Hardware Vendor Offers Backdoor with Every Product | threatpost</title>
    <dc:date>2011-05-26T20:39:38+00:00</dc:date>
    <link>https://threatpost.com/en_us/blogs/hardware-vendor-offers-backdoor-every-product-052611</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:cf928e89e551/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://windowsir.blogspot.com/2011/05/tools.html">
    <title>Windows Incident Response: Tools</title>
    <dc:date>2011-05-26T20:39:00+00:00</dc:date>
    <link>http://windowsir.blogspot.com/2011/05/tools.html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:30ec583af3d1/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.f-secure.com/weblog/archives/00002164.html">
    <title>Banks profit from spam - F-Secure Weblog : News from the Lab</title>
    <dc:date>2011-05-26T03:44:59+00:00</dc:date>
    <link>http://www.f-secure.com/weblog/archives/00002164.html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:cddd16e7ec80/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://lifehacker.com/5803569/lock-down-your-computer-like-the-nsa">
    <title>Lock Down Your Computer Like the NSA</title>
    <dc:date>2011-05-22T01:30:30+00:00</dc:date>
    <link>http://lifehacker.com/5803569/lock-down-your-computer-like-the-nsa</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:05a7d56f6bc7/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.hispasec.com/lapsec/index_en_html">
    <title>laptop security by the virustotal people</title>
    <dc:date>2011-05-18T05:27:16+00:00</dc:date>
    <link>http://www.hispasec.com/lapsec/index_en_html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware hardening</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:55a257cbd9da/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:hardening"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blogs.rsa.com/rsafarl/fraud-news-flash-%E2%80%93-the-downfall-of-the-mighty-%E2%80%93-zeus-trojan%E2%80%99s-source-code-leaked-and-now-available-everywhere/">
    <title>Fraud News Flash – The Downfall of the Mighty – Zeus Trojan’s Source Code Leaked and Now Available Everywhere « Speaking of Security – The RSA Blog and Podcast</title>
    <dc:date>2011-05-16T02:34:26+00:00</dc:date>
    <link>http://blogs.rsa.com/rsafarl/fraud-news-flash-%E2%80%93-the-downfall-of-the-mighty-%E2%80%93-zeus-trojan%E2%80%99s-source-code-leaked-and-now-available-everywhere/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:c2e0a49fc313/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://carnal0wnage.attackresearch.com/node/453">
    <title>Frameworks and how I hack currently (and how I don't) | carnal0wnage.attackresearch.com</title>
    <dc:date>2011-05-15T16:45:59+00:00</dc:date>
    <link>http://carnal0wnage.attackresearch.com/node/453</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:686d69824151/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.damballa.com/?p=1276">
    <title>The Crimeware Infection Lifecycle « The Day Before Zero</title>
    <dc:date>2011-05-15T16:44:18+00:00</dc:date>
    <link>http://blog.damballa.com/?p=1276</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:b2d0472df9c9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://hackitoergosum.org/">
    <title>Hackito Ergo Sum 2011</title>
    <dc:date>2011-03-25T06:16:09+00:00</dc:date>
    <link>http://hackitoergosum.org/</link>
    <dc:creator>candice</dc:creator><description><![CDATA[conference paris 2011 proceedings etc]]></description>
<dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:9f85569cc518/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.zeltser.com/post/3762502297/windows-integrity-levels-for-spyware-protection-processe">
    <title>Lenny Zeltser on Information Security — Protect Processes from Spyware With Windows Integrity Levels</title>
    <dc:date>2011-03-10T17:50:32+00:00</dc:date>
    <link>http://blog.zeltser.com/post/3762502297/windows-integrity-levels-for-spyware-protection-processe</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:3b2f1dcb2d11/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.confickerworkinggroup.org/wiki/uploads/Conficker_Working_Group_Lessons_Learned_17_June_2010_final.pdf">
    <title>Conficker Working Group post-mortem</title>
    <dc:date>2011-02-02T16:31:21+00:00</dc:date>
    <link>http://www.confickerworkinggroup.org/wiki/uploads/Conficker_Working_Group_Lessons_Learned_17_June_2010_final.pdf</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:43ab30a3e2e6/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.fireeye.com/research/2011/01/the-dead-giveaways-of-vm-aware-malware.html?utm_source=feedburner&amp;utm_medium=feed&amp;utm_campaign=Feed%3A+FE_research+%28FireEye+Malware+Intelligence+Lab%29">
    <title>FireEye Malware Intelligence Lab: The Dead Giveaways of VM-Aware Malware</title>
    <dc:date>2011-02-01T03:27:56+00:00</dc:date>
    <link>http://blog.fireeye.com/research/2011/01/the-dead-giveaways-of-vm-aware-malware.html?utm_source=feedburner&amp;utm_medium=feed&amp;utm_campaign=Feed%3A+FE_research+%28FireEye+Malware+Intelligence+Lab%29</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:0eb464a302e9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.zeltser.com/post/2924829475/endpoint-antimalware-product-wishlist">
    <title>Lenny Zeltser on Information Security — Wish-List for Endpoint Anti-Malware Products</title>
    <dc:date>2011-01-26T03:03:10+00:00</dc:date>
    <link>http://blog.zeltser.com/post/2924829475/endpoint-antimalware-product-wishlist</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:269047283e08/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://windbg.info/doc/2-windbg-a-z.html">
    <title>WinDbg. From A to Z!</title>
    <dc:date>2010-11-22T05:58:52+00:00</dc:date>
    <link>http://windbg.info/doc/2-windbg-a-z.html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware assembly</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:d3e82efb5895/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:assembly"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://x86asm.net/articles/x86-64-tour-of-intel-manuals/">
    <title>x86-64 Tour of Intel Manuals</title>
    <dc:date>2010-11-22T05:37:41+00:00</dc:date>
    <link>http://x86asm.net/articles/x86-64-tour-of-intel-manuals/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware x86</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:5e108e2240f0/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:x86"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.sophos.com/security/technical-papers/samosseiko-vb2009-paper.pdf">
    <title>samosseiko-vb2009-paper.pdf (application/pdf Object)</title>
    <dc:date>2010-11-21T02:54:34+00:00</dc:date>
    <link>http://www.sophos.com/security/technical-papers/samosseiko-vb2009-paper.pdf</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:dd20e8154768/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.kyrus-tech.com/andrew-ruef-on-stuxnet/">
    <title>Andrew Ruef on Stuxnet | Kyrus Technology</title>
    <dc:date>2010-11-21T02:54:01+00:00</dc:date>
    <link>http://www.kyrus-tech.com/andrew-ruef-on-stuxnet/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:fe03b909966c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://cert.at/downloads/software/minibis_en.html">
    <title>Minibis - CERT.at</title>
    <dc:date>2010-11-17T06:30:47+00:00</dc:date>
    <link>http://cert.at/downloads/software/minibis_en.html</link>
    <dc:creator>candice</dc:creator><description><![CDATA[install newer version... ]]></description>
<dc:subject>security malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:c70a34014fee/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.sans.org/reading_room/whitepapers/malicious/clash-titans-zeus-spyeye_33393">
    <title>clash-titans-zeus-spyeye_33393 (application/pdf Object)</title>
    <dc:date>2010-11-09T03:41:45+00:00</dc:date>
    <link>http://www.sans.org/reading_room/whitepapers/malicious/clash-titans-zeus-spyeye_33393</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:47c9e51647e9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.mandiant.com/products/free_software/mandiant_audit_viewer/">
    <title>MANDIANT: Intelligent Information Security | Free Software</title>
    <dc:date>2010-11-02T15:15:49+00:00</dc:date>
    <link>http://www.mandiant.com/products/free_software/mandiant_audit_viewer/</link>
    <dc:creator>candice</dc:creator><description><![CDATA[realized I do not have the viewer portion]]></description>
<dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:622142e7bdf9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://journeyintoir.blogspot.com/2010/09/anatomy-of-drive-by-part-1.html">
    <title>Journey Into Incident Response: Anatomy of a Drive-by Part 1</title>
    <dc:date>2010-10-22T04:58:26+00:00</dc:date>
    <link>http://journeyintoir.blogspot.com/2010/09/anatomy-of-drive-by-part-1.html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:3e9b83c07322/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.zeltser.com/post/1358737300/malware-analysis-reports">
    <title>Lenny Zeltser on Information Security — Several Malware Analysis Reports to Learn From</title>
    <dc:date>2010-10-22T04:33:42+00:00</dc:date>
    <link>http://blog.zeltser.com/post/1358737300/malware-analysis-reports</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:7cbb7c2b679c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://wehntrust.codeplex.com/">
    <title>WehnTrust</title>
    <dc:date>2010-10-18T00:11:19+00:00</dc:date>
    <link>http://wehntrust.codeplex.com/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware mitigation aslr</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:4f3098a01ebd/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:mitigation"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:aslr"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blogs.technet.com/b/srd/archive/2009/10/27/announcing-the-release-of-the-enhanced-mitigation-evaluation-toolkit.aspx">
    <title>Announcing the release of the Enhanced Mitigation Evaluation Toolkit - Security Research &amp; Defense - Site Home - TechNet Blogs</title>
    <dc:date>2010-10-18T00:09:12+00:00</dc:date>
    <link>http://blogs.technet.com/b/srd/archive/2009/10/27/announcing-the-release-of-the-enhanced-mitigation-evaluation-toolkit.aspx</link>
    <dc:creator>candice</dc:creator><dc:subject>malware mitigation</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:d0c5cc361080/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:mitigation"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://community.websense.com/blogs/securitylabs/archive/2010/10/13/eleonore-exploits-pack-s-unescape-cipher.aspx?utm_source=twitterfeed&amp;utm_medium=twitter">
    <title>Eleonore Exploits Pack's Unescape Cipher - Security Labs</title>
    <dc:date>2010-10-14T20:22:34+00:00</dc:date>
    <link>http://community.websense.com/blogs/securitylabs/archive/2010/10/13/eleonore-exploits-pack-s-unescape-cipher.aspx?utm_source=twitterfeed&amp;utm_medium=twitter</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:bc6340f419b9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.reddit.com/r/ReverseEngineering/">
    <title>Reverse Engineering</title>
    <dc:date>2010-10-14T02:12:16+00:00</dc:date>
    <link>http://www.reddit.com/r/ReverseEngineering/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:5dfac6848d99/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.sophos.com/security/technical-papers/digital_signature_abuse.html">
    <title>Want my autograph? The use and abuse of digital signatures by malware</title>
    <dc:date>2010-10-12T20:58:52+00:00</dc:date>
    <link>http://www.sophos.com/security/technical-papers/digital_signature_abuse.html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:c9272b9f6240/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.mlsec.org/malheur/">
    <title>Malheur - Automatic Analysis of Malware Behavior</title>
    <dc:date>2010-10-11T02:56:27+00:00</dc:date>
    <link>http://www.mlsec.org/malheur/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:c7658f6974a7/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://sourceforge.net/projects/zerowine/">
    <title>Zero Wine Malware Analysis Tool | Download Zero Wine Malware Analysis Tool software for free at SourceForge.net</title>
    <dc:date>2010-10-11T02:55:32+00:00</dc:date>
    <link>http://sourceforge.net/projects/zerowine/</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:7deb1281d793/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.firmcorp.net/2010/07/crimeware-how-to-reverse-engineer.html">
    <title>Crimeware. How to reverse engineer a botnet | Corporate IT Blog</title>
    <dc:date>2010-10-11T02:47:17+00:00</dc:date>
    <link>http://www.firmcorp.net/2010/07/crimeware-how-to-reverse-engineer.html</link>
    <dc:creator>candice</dc:creator><dc:subject>malware news</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:5a408ee21e3a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:news"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://j00ru.vexillium.org/?p=641">
    <title>Windows kernel2user transitions one more time | j00ru//vx tech blog</title>
    <dc:date>2010-10-11T02:39:07+00:00</dc:date>
    <link>http://j00ru.vexillium.org/?p=641</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:f64503064cbb/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.kaspersky.com/VB_2010">
    <title>Kaspersky Lab at the 20th Virus Bulletin International Conference on IT Security</title>
    <dc:date>2010-10-06T01:55:32+00:00</dc:date>
    <link>http://www.kaspersky.com/VB_2010</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:18f00b4dfab6/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://pferrie2.tripod.com/papers/lnk.pdf">
    <title>lnk.pdf (application/pdf Object)</title>
    <dc:date>2010-10-02T04:10:29+00:00</dc:date>
    <link>http://pferrie2.tripod.com/papers/lnk.pdf</link>
    <dc:creator>candice</dc:creator><dc:subject>malware</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:candice/b:52167b21b26c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:candice/t:malware"/>
</rdf:Bag></taxo:topics>
</item>
</rdf:RDF>