A frequent request here is for both introductory and detailed information on setting up and using a safe malware analysis environment. I've created a sticky thread where I hope we can gather as many good articles as possible that touch on that subject.
Please add any noteworthy articles you find or are aware of that can help guide those of us who are interested in secure reversing of insecure targets.
The best of the articles will find its way into a larger knowledge resource that is currently being set up, so anything you can add will be a contribution to something far grander and permanent than this thread.
To start with, here are a few that have been mentioned before in the forums:
Capture, care and analysis of Malware made easy
http://www.linklogger.com/vm_capture.htm
Practical Malware Analysis
http://www.blackhat.com/presentations/bh-dc-07/Kendall_McMillan/Presentation/bh-dc-07-Kendall_McMillan.pdf
Setting up Windbg/VMWare:
Remote Debugging using VMWare
http://www.catch22.net/tuts/vmware
Driver Debugging with WinDbg and VMWare
http://silverstr.ufies.org/lotr0/windbg-vmware.html
Cheers,
Kayaker
Bookmarks