Page 1 of 1

Shadow Security Scanner

Posted: Mon Sep 05, 2016 7:38 am
by Bogdan-Mihai
Hi,

I recently came across this Shadow Security Scanner by Safety-Lab. It looks very nice, it does what it is supposed to do, but I suspect it could be malicious. It creates some temporary files, spawns some processes upon installation. Did someone else tried it? Any thoughts?

http://www.safety-lab.com/en/download.htm

Have a nice day,
Bogdan

Re: Shadow Security Scanner

Posted: Wed Sep 07, 2016 5:29 am
by EP_X0FF
Never heard about it. Something similar to Microsoft Baseline Security Analyzer?

Re: Shadow Security Scanner

Posted: Wed Sep 07, 2016 7:14 am
by Bogdan-Mihai
Basically, yes. This one looks complete and it seems like it can audit proxies, too. MBSA looks like it works only against Windows.

Maybe someone used the free 15 day version or can have a look at it.

Re: Shadow Security Scanner

Posted: Thu Sep 08, 2016 8:19 am
by waffles2.0
I shall take a look and run it in Cuckoo see if anything interesting pops up. I'll report back if there is anything interesting.

Re: Shadow Security Scanner

Posted: Thu Sep 08, 2016 11:01 am
by Bogdan-Mihai
Good point. I have a Cuckoo with 3 diff VMs, I can run it in there, too. I`ll wait for your thoughts.