Announcement

Collapse
No announcement yet.

Small time malware research lab, suggestion??

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    Small time malware research lab, suggestion??

    Guys, I'm planning to set up a malware lab, would like to get some suggestions from you guys. Desktop, switches, more?
    "A good traveler has no fixed plans and is not intent on arriving." -- Lao Tzu
    Tags: None
  • #2
    Re: Small time malware research lab, suggestion??

    Sit down and write down the requirements for the lab. The hardware and software are really the last things you need to address. Answer question like - whether or not it will be networked (do you need Internet access; access from your home network; etc.). Draw the network out on paper. It's easier to build something if you can visualize it.
    How large or small does it need to be. I know people who do malware analysis using non-persistent VMs on a stand alone laptop. Files are moved to/from the laptop using USB drives. I know others that have three or four dedicated machines on a closed network.
    DaKahuna
    ___________________
    Will Hack for Bandwidth

    Comment

    • #3
      Re: Small time malware research lab, suggestion??

      I'm a big fan of those cheapish atom ion boxes off newegg, have 2 setup in my basement on a closed network. I'm also a huge fan of VM's, it really depends on what you specifically are trying to do.

      Comment

      • #4
        Re: Small time malware research lab, suggestion??

        Originally posted by DaKahuna View Post
        Sit down and write down the requirements for the lab. The hardware and software are really the last things you need to address. Answer question like - whether or not it will be networked (do you need Internet access; access from your home network; etc.). Draw the network out on paper. It's easier to build something if you can visualize it.
        How large or small does it need to be. I know people who do malware analysis using non-persistent VMs on a stand alone laptop. Files are moved to/from the laptop using USB drives. I know others that have three or four dedicated machines on a closed network.
        Originally posted by m33p View Post
        I'm a big fan of those cheapish atom ion boxes off newegg, have 2 setup in my basement on a closed network. I'm also a huge fan of VM's, it really depends on what you specifically are trying to do.
        w00t! Thanks guys, that will be the first thing on my list from now on. ;)
        "A good traveler has no fixed plans and is not intent on arriving." -- Lao Tzu

        Comment

        • #5
          Re: Small time malware research lab, suggestion??

          While not "malware research lab" specific, there have been a few threads (going back) on setting up "home labs", that may be of interest to you:

          https://forum.defcon.org/showthread.php?t=10919

          https://forum.defcon.org/showthread.php?t=10330

          https://forum.defcon.org/showthread.php?t=10116
          And I heard a voice in the midst of the four beasts, And I looked and behold: a pale horse. And his name, that sat on him, was Death. And Hell followed with him.

          Comment

          • #6
            Re: Small time malware research lab, suggestion??

            Vmware/Vsphere can make some things much easier for you (especially if you are a VM noob)-

            The ability to sandbox, clone, restore are invaluable.

            Comment

            • #7
              Re: Small time malware research lab, suggestion??

              Noted. Thanks for all the suggestions. :)
              "A good traveler has no fixed plans and is not intent on arriving." -- Lao Tzu

              Comment

              • #8
                Re: Small time malware research lab, suggestion??

                Agree with LosT. Get yourself VMware player (free) or even better VMware Workstation and go virtual. It is so much easier and cost savings are great.
                ..::800xl::..

                Comment

                Previous template Next
                Working...
                X