Testing Sandboxes vs. Malware -- What/where tests to perform?

Hello All,
I plan on testing multiple pieces of sandbox software to see how each compares. I'm planning on testing Sandboxie, GesWall, DefenseWall, SafeSpace, and BufferZone and browsers w/ sandboxes or something similar like IE8, Chrome, Iron with no other forms of protection to see if a sandbox is enough to protect. These will be run in Xen or VMWare (if I can get a free copy) with a firewall on the host machine so nothing will realistically get through.

Tests:
Going to malware infected web sites - list of sites? Ideally not porn since I'd like to cite sources.
ALT+CTRL+DEL exiting
Deletion of Files
Local registry
Worm propagation
Virus propagation
Buffer Overflow
Botnet infection
Rootkits
Keyloggers
Javascript infections
Misc. crashes ie JPEG Exploit

So far: eicar anti virus/malware test files, Comodo leak tests, random keylogger apps, any online malware test I can find. Using IceSword to see whether the malware opened ports or succeeded in infecting with rootkit.

The questions I have for you guys is
1) What other tests can be performed?
2) Where can I get the malware I listed i.e. worms, virus, buffer overflow, botnets, rootkits, keyloggers. Binaries are ideal (I would like it to do something malicious that I can keep track of) but I can compile source assuming there are all necessary #includes
3) Any apps that test these vulnerabilities that I could use as part of the testing?

Thanks!

 

There is such a list here. Also, you may check out anti-virus companies blogs for that links.

 

thanks, I'm setting my VMs up this weekend I hope.

 

Didn't SafeSpace get axe'd?

 

Yes it did.

 

I can't access that web page can you post a working link?

 

Ah, sorry, it's only for VirusInfo staff. Completely forgot about it. You may try to use malwaredomainlist and sunbelt blog information.

 

U must know the details about these security software.

Some of them don,t block keyloggers by design, some/ many don,t stop crashes due to OS vulnerabiliy exloits, some don,t intercept system shutdown calls, some don,t protect file deletion/ access with some exceptions of course, some don,t block outbound internet access or don,t close the ports, almost all don,t stop copyin of malware n ur HD except that the malware is isolated or virtualized... so on and so forth.

The main thing u should test is that all these applications claim to keep core OS intact inspite of malware attack.