Home > Features > Dev Depot: urlQuery, Detects Potential Malware • Bookmark   • Newsletters   • Register Search Options

FEATURE

Dev Depot: urlQuery, Detects Potential Malware

Dev Depot: urlQuery, Detects Potential Malware

February 6, 2014
Text size: 
View in Digital Mag
Get XBIZ News
XBIZ Research
Will virtual reality boost the paysite market?
Yes, it will soon
  39.88%
Yes, but in a few years
  36.90%
No
  23.21%
Out of 168 votes. Results based on votes submitted by members of XBIZ.net social network.

" The limited scope of urlQuery uses a small set of features commonly employed by Intrusion Detection Systems, omitting several crucial areas when evaluating the overall effectiveness and performance of a site’s security systems. "

A free online service for testing and analyzing URLs, urlQuery (www.urlquery.net) helps identify malicious and suspicious content on websites as a means of improving the safety and security of the Internet. It’s also a great tool for auditing your own websites. According to its publisher, while no current service or security solution can guarantee 100 percent detection of malicious content, urlQuery provides detailed information about the activities a web browser engages in when visiting a specific site, and then presents the results for further analysis; delivering a second opinion about the state of a site’s security.

“As with other sandbox technologies it can be detected, which can skew or make the results inaccurate,” states a urlQuery spokesperson. “Other issues might include browser incompatibilities with settings or configurations within the browser or sandbox.”

It doesn’t get any easier than using urlQuery: just enter a profile URL in the input box and then click “go.” Optional advanced settings allow users to specify a User Agent and Referer plus Adobe Reader and Java versions, along with a VM Template, for those users needing more targeted testing.

Advanced users may also be interested in the urlQuery API, which offers the ability to submit URLs, query for a URL’s reputation and receive basic report information from public reports over JSON. A private API is provided to security companies, giving them full access to data such as URL feeds and other nonpublic information. Currently in closed beta testing, development of the API has taken longer than expected, due to the roll out of a new backend, which was required before any further extension was possible.

Daily updates to the signature sets help keep up with the latest threats, while certain subcategories of these signatures have been disabled, such as those governing policy and unrelated services (i.e. FTP, SMTP, etc.) plus protocols such as ICMP and SCADA, since they fall outside of the focus of the urlQuery service.

The limited scope of urlQuery uses a small set of features commonly employed by Intrusion Detection Systems, omitting several crucial areas when evaluating the overall effectiveness and performance of a site’s security systems. An internal detection engine has access to data gathered from within the browser which can be hard for other systems to reach or correctly determine; giving urlQuery a unique opportunity to alert on items that other system might miss.

In addition to the analysis it provides to your specified URL, the urlQuery.net website features an interesting statistics page, which reveals data such as the number of processed URLs vs. those that were flagged as being suspicious, as well as the relative incidences of Neutrino, Nice Pack, Private, ProPack, RedKit, Sakura, SofosFO, SPL, STFO Pack, Styx, Sweet Orange and unknown exploit kits that urlQuery has detected. Also listed are the Top 5 Alerts for the last 30 days, revealing the scope of malicious iframe injections, CookieBomb and other suspicious JavaScript code, plus Dynamic DNS and RedKit URL patterns that urlQuery identified, providing a guide to security staff.

If you’re responsible for protecting a site or analyzing others, then urlQuery should find a place in your toolbox. Try it and see the results for yourself.


LEGAL PERSPECTIVES

Dissecting an $11.9M Affiliate Marketing Judgment

The Federal Trade Commission scored another major win in early October when the 2nd U.S. Circuit Court of Appeals upheld a lower court ruling, requiring LeadClick Media LLC to pay an $11.9 million award. The... More »

Legal Protection for Amateur Shoots

Any adult industry professional who creates video content with actual first-time amateurs will come to an early knowledge that later performer regret is commonplace. Recognized performers who regularly... More »

Legal Options to Address Pirated Cam Performances

Many webcam performers have experienced a new trend in online piracy — the illegal recording and publication of live webcam performances. The “business model” is disturbingly simple:... More »
XBIZ NEWSLETTERS
Stay informed of the latest industry developments. Get XBIZ newsletters delivered to your inbox. Subscribe today!
Enter email address:

* To manage existing subscriptions click here.






POPULAR PRODUCTS & SERVICES
Submit your press release to
multiple news outlets with 1 click.
Subscribe to RSS news feeds or
add free content to your website.
Access XBIZ news and articles
with your mobile device.
Subscribe to XBIZ Premiere magazine, the industry's leading adult retail trade publications, delivering the most timely and comprehensive business news and information to producers and retailers of adult products.

UPCOMING EVENTS

XBIZ 2017

Jan 09 - Jan 13
Hollywood, CA

XBIZ Awards 2017

Jan 12 - Jan 12
Los Angeles, CA

ANME Founders Show

Jan 14 - Jan 15
Los Angeles Marriott Burbank Airport

Everything To Do With Sex Show

Jan 20 - Jan 22
Montréal, Québec
Everyday thousands of business professionals browse XBIZ's industry directory for quality products and services. Not listed yet? Your company could be losing potential new business. Submit your company today!
Use XBIZ RSS feeds to stay informed of the latest industry developments or as a content syndication tool for your website!