BlackPerl DFIR || INCIDENT RESPONSE TRAINING || Full Course - Incident Response Training Course, Malware Incident Triage, How to Install Cuckoo, Day 16

In this full series we will talk about Incident Response and it will be a Free Training Course for everyone. Today is Day-16 and I will show you how can you quickly analyze and triage any malware, suspicious samples using Cuckoo Sandbox. As an Incident Responder, It is always important to understand that we MUST not rely on any Online Sandbox which has no guarantee to show the true outcome always. It is always preferred to run/analyze all the samples Inhouse. Watch the below Episodes to create your DFIR Set up and perform analysis with manual process- 1. https://youtu.be/zyjwo8z3PtU 2.https://youtu.be/D1TTZiHXwxY Now, when you need to get some quick analysis to understand how a sample behaves, you might not always get time to analyze things manually; so this episode covers detailed steps of- 1. How to set up a Local sandbox powered by Cuckoo 2. How to run analysis via Cuckoo 3. How the analysis outcome might differ from online solution VS local sandbox We will walk you through with a real sample incident where online solution gave the output as Clean for submitted sample but it dropped a Ransomware on user PC. Now, if we run the same analysis on the Cuckoo sandbox, we can see the difference in the outcome. So watch the episode full, if you want to learn doing triage quick yet detailed manner. 🔗LINKs for your requirements- ------------------------------------------------------------------------------------------------------------------------- 1. Installation Steps/Scripts- https://github.com/archanchoudhury/Cuckoo-Script WATCH BELOW Playlists as well, if you want to make your career in DFIR and Security Operations!! ------------------------------------------------------------------------------------------------------------------------- INCIDENT RESPONSE TRAINING Full Course 👉https://youtube.com/playlist?list=PLjWEV7pmvSa4yvhzNsCjOJovOn1LLyBXB DFIR Free Tools and Techniques 👉 https://youtube.com/playlist?list=PLjWEV7pmvSa6f-NTpXsaUYWZLjLAB_0TS Windows and Memory Forensics 👉 https://youtube.com/playlist?list=PLjWEV7pmvSa50erciZUSnzvE7nK0FyvsH Malware Analysis 👉 https://youtube.com/playlist?list=PLjWEV7pmvSa6u32RongesgDtkfKBfrFWW SIEM Tutorial 👉 https://youtube.com/playlist?list=PLjWEV7pmvSa7cXTkCppnYHERUdy8Dd71x Threat Hunt & Threat Intelligence 👉 https://youtube.com/playlist?list=PLjWEV7pmvSa5UTZlsWp5wRnURNbeMS-fu ⌚ Timelines ------------------------------------------------------------------------------------------------------------------------- 0:00 ⏩ Introduction 1:38 ⏩ Analysis of the sample 10:00 ⏩ Understand Cuckoo Install Script 25:39 ⏩ Run Cuckoo 32:58 ⏩ Summarize 📞📲 FOLLOW ME EVERYWHERE- ------------------------------------------------------------------------------------------------------------------------- ✔ LinkedIn: https://www.linkedin.com/company/blackperl ✔ You can reach out to me personally in LinkedIn as well- https://bit.ly/38ze4L5 ✔ Twitter: @blackperl_dfir ✔ Git: https://github.com/archanchoudhury ✔ Insta: (blackperl_dfir)https://www.instagram.com/blackperl_dfir/ ✔ Can be reached via archan.fiem.it@gmail.com SUPPORT BLACKPERL ------------------------------------------------------------------------------------------------------------------------- ╔═╦╗╔╦╗╔═╦═╦╦╦╦╗╔═╗ ║╚╣║║║╚╣╚╣╔╣╔╣║╚╣═╣ ╠╗║╚╝║║╠╗║╚╣║║║║║═╣ ╚═╩══╩═╩═╩═╩╝╚╩═╩═╝ ➡️ SUBSCRIBE, Share, Like, Comment ☕ Buy me a Coffee 👉 https://www.buymeacoffee.com/BlackPerl 📧 Sponsorship Inquiries: archan.fiem.it@gmail.com ------------------------------------------------------------------------------------------------------------------------- 🙏 Thanks for watching!! Be CyberAware!! 🤞