Security Onion Blog

Friday, July 30, 2021

Quick Malware Analysis: malware-traffic-analysis.net pcaps from 2021-06-04

Thanks to Brad Duncan for sharing these pcaps!
https://www.malware-traffic-analysis.net/2021/06/04/index.html

We did a quick analysis of these pcaps on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Here are some of the interesting Suricata alerts, Zeek logs, and session transcripts:











at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Search This Blog

Featured Post

New Security Onion Online Training Class - Detection Engineering with Security Onion!

We've just added an exciting new course to our online Security Onion 2.4 training catalog! It's called "Detection Engineering w...

Popular Posts

Blog Archive