aljaz/securedorg.github.io
1
0
Fork 0
mirror of https://github.com/aljazceru/securedorg.github.io.git synced 2025-12-24 01:14:24 +01:00
Code Issues Packages Projects Releases Wiki Activity

updating triage

Browse Source
This commit is contained in:
Amanda Rousseau
2017-03-26 00:17:51 -07:00
parent 4611858f2d
commit 38eb6e7629
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
triage.md
View File

@@ -84,6 +84,7 @@ You can use the **Malware Analysis Report** template [HERE](https://securedorg.g
5. Calculate the hash using **quickhash**, go to virustotal.com and search the hash
6. Open the file in **BinText** and record any interesting strings
7. Quick Detonation
The point of the quick detonation is to capture the filesystem, registry, and connection activity. The VMs are set up in such a way that the Victim VM's internet traffic is captured by the Sniffer VM.
![alt text](https://securedorg.github.io/images/triageVMs.gif "Victim and Sniffer")