Example Malware Network Analysis

Download PCAP: http://server1.ctfcice.es:9090 (2017-12-04-Dridex-malspam-traffic.pcap-2)

  1. Wireshark/TcpDump
  2. Extract tools (Foremost/TCPxtract/Capptier)
  3. Malware communication Analysis (tomchop/malcom-automatic)
  4. VirusTotal
  5. Sandboxing (Reverse.it)
  6. Viper (remnux/viper)
  7. Maltrail/Maltrieve (remnux/maltrieve) // https://github.com/stamparm/maltrail
  8. ELK Suricata/Snort

results matching ""

    No results matching ""