Not sure what is allowed but services like WOT http://www.mywot.com/
use public known sources for their blocking. They ask for them in their forums from time to time. Find a good one with rss-feed. Subscribe in Google Reader or similar. Use a linkifier thingy for Firefox, perhaps also one that will let you open link in new tab just by rightclicking. Then you can test many type of malware in seconds
Can also just browse/search around WOT - each site has its own page so go crazy.
Very educational and could give you a whole new perspective on certain products. Browser-filters (I wish you luck reaching 83% or what it was IE8 caught in that test, not going to happen!), OpenDNS, hosts-file, AV, WOT or whatever you use. If not new perspective you will at least be more critical of what you hear on the internet.
Those lists are often miles long, just keep scrolling in Google Reader. Well go visit site, see how they categorize them. Advantage to digging into warez, which is kind of illegal even if you dont intent to use incoming, is this is 100% certain to be bad but there are many dif. types of bad. If all you want is some action just go for those domains with words like scanner, virus, defender, protection - like they are related to security somehow. They often have have fake scanners triggering a download in a flash. A certain popular type wont let you close browser until you have downloaded - not unless you are quick, heh. Cant miss them. Or they look highly professional with fake icons claiming fame and gold medals - does not really harm computer. A rogue program since only purpose is to get your money. Some of them might harm computer, make unwanted changes - there are many variants. Some sites like those with fake Flashupdates actually are close to perfect copies of real ones.
You can test on your normal computer but then really need to know what you are doing. 1 click can be 1 too many. So set up a Virtualbox or use another computer with no sharing/networking. Ive done this testing many times on other computer but once I forgot I had also played with some sharing. Just that day I had to test a Sality/Y, someone sent it do me on request - was not fun since it spreads faster than you can blink and really mess up exe-files, also those shared! Can be removed but difficult and take hours. You can get clickhappy testing because of the fun but not a good idea
Really a matter of luck or not if you dont take it very easy. As those sites with links will say it is your own responsibility to proceed. Also why they never make it easy to just click - why I mentioned Firefox add-ons to fix that.
Ive never seen a drive-by download that automatically infect computer without user activity. If you want to see those then dont update OS, IE, anything in your Virtualbox. XP without SPs will do nicely. Dont think you will have much luck with updates in place - can be risky enough as it is. Im more interested to see impact when all the right things have been done - or almost all the right things. Run as Adm., no clever security policies and turn off uac on Vista to give infection a chance. A common setup anyway.
Edited by Bambo, 17 August 2009 - 01:28 PM.