Some malware analysis sandboxes


REMnux: A Linux Toolkit for Reverse-Engineering and Analyzing Malware
https://remnux.org/

SANS Investigative Forensic Toolkit (SIFT) Workstation Version 3
http://digital-forensics.sans.org/community/downloads

Drakvuf - DRAKVUF is a virtualization based agentless black-box binary analysis system. DRAKVUF allows for in-depth execution tracing of arbitrary binaries (including operating systems), all without having to install any special software within the virtual machine used for analysis.
SANS Investigative Forensic Toolkit (SIFT) Workstation Version 3

https://github.com/appcoreopc/drakvuf

Caine
http://www.caine-live.net/page5/page5.html

DEFT Linux
http://www.deftlinux.net/

PlainSight
http://www.plainsight.info/download.html

Helix3
http://www.e-fense.com/products.php

Paladin Forensic Suite (commercial)
https://sumuri.com/software/paladin/

Comments

Post a Comment

Popular posts from this blog

The specified initialization vector (IV) does not match the block size for this algorithm

Image
If you're getting  exception when trying to assigned key to a symmetric key and getting error message below :- The specified initialization vector (IV) does not match the block size for this algorithm And your code probably look like something below :- Then you need to go into debug mode and start looking into the supported size for IV as shown in diagram below :- As you can see, IV is 16 bytes, so you need to provide 16 bytes. The same goes for Key field too, if you're adding anything to it. As long as you provide a valid key size, then we're good and you're code will be ready.
Read more