Tuesday, September 7, 2021

Quick Malware Analysis: malware-traffic-analysis.net data exfiltration exercise from 2021-07-14

Thanks to Brad Duncan for sharing this pcap!
https://www.malware-traffic-analysis.net/2021/07/14/index.html

We did a quick analysis of this pcap on the latest version of Security Onion via so-import-pcap:
https://docs.securityonion.net/en/2.3/so-import-pcap.html

Want to follow along? All you need is a minimal virtual machine with 4GB RAM and you can follow the screenshots here:

 

No comments:

Search This Blog

Featured Post

Security Onion 2.4.160 now available including Playbooks, Guided Analysis, MCP Server, and more!

Security Onion 2.4.160 is now available and includes Playbooks and Guided Analysis to help you more quickly triage and respond to alerts! Se...

Popular Posts

Blog Archive