Incident Response Training Course, Malware Incident Triage, How to Install Cuckoo, Day 16

Описание: In this full series we will talk about Incident Response and it will be a Free Training Course for everyone. Today is Day-16 and I will show you how can you quickly analyze and triage any malware, suspicious samples using Cuckoo Sandbox. As an Incident Responder, It is always important to understand that we MUST not rely on any Online Sandbox which has no guarantee to show the true outcome always.
It is always preferred to run/analyze all the samples Inhouse. Watch the below Episodes to create your DFIR Set up and perform analysis with manual process-
1.    • EASY Creation of Malware Analysis and Digi...  
2.   • Incident Response Training Course, Malicio...  

Now, when you need to get some quick analysis to understand how a sample behaves, you might not always get time to analyze things manually; so this episode covers detailed steps of-
1. How to set up a Local sandbox powered by Cuckoo
2. How to run analysis via Cuckoo
3. How the analysis outcome might differ from online solution VS local sandbox

We will walk you through with a real sample incident where online solution gave the output as Clean for submitted sample but it dropped a Ransomware on user PC. Now, if we run the same analysis on the Cuckoo sandbox, we can see the difference in the outcome.

So watch the episode full, if you want to learn doing triage quick yet detailed manner.

🔗LINKs for your requirements-
-------------------------------------------------------------------------------------------------------------------------
1. Installation Steps/Scripts- https://github.com/archanchoudhury/Cu...


WATCH BELOW Playlists as well, if you want to make your career in DFIR and Security Operations!!
-------------------------------------------------------------------------------------------------------------------------
INCIDENT RESPONSE TRAINING Full Course 👉   • BlackPerl DFIR  || INCIDENT RESPONSE TRAIN...  
DFIR Free Tools and Techniques 👉    • BlackPerl DFIR || DFIR Tools and Techniques  
Windows and Memory Forensics 👉    • BlackPerl DFIR || Windows and Memory Foren...  
Malware Analysis 👉    • BlackPerl DFIR || Malware Analysis Series  
SIEM Tutorial 👉    • BlackPerl DFIR || Learn SIEM with me & Cre...  
Threat Hunt & Threat Intelligence 👉    • BlackPerl DFIR || Threat Hunt & Threat Int...  

⌚
Timelines
-------------------------------------------------------------------------------------------------------------------------
0:00 ⏩ Introduction
1:38 ⏩ Analysis of the sample
10:00 ⏩ Understand Cuckoo Install Script
25:39 ⏩ Run Cuckoo
32:58 ⏩ Summarize


📞📲
FOLLOW ME EVERYWHERE-
-------------------------------------------------------------------------------------------------------------------------
✔ LinkedIn:   / blackperl  
✔ You can reach out to me personally in LinkedIn as well- https://bit.ly/38ze4L5
✔ Twitter: @blackperl_dfir
✔ Git: https://github.com/archanchoudhury
✔ Insta: (blackperl_dfir)  / blackperl_dfir  
✔ Can be reached via [email protected]

SUPPORT BLACKPERL
-------------------------------------------------------------------------------------------------------------------------
╔═╦╗╔╦╗╔═╦═╦╦╦╦╗╔═╗
║╚╣║║║╚╣╚╣╔╣╔╣║╚╣═╣
╠╗║╚╝║║╠╗║╚╣║║║║║═╣
╚═╩══╩═╩═╩═╩╝╚╩═╩═╝
➡️ SUBSCRIBE, Share, Like, Comment
☕ Buy me a Coffee 👉 https://www.buymeacoffee.com/BlackPerl
📧 Sponsorship Inquiries: [email protected]

-------------------------------------------------------------------------------------------------------------------------
🙏 Thanks for watching!! Be CyberAware!! 🤞