Basic maelware Analysis presented at BSidesSLC 2014

by Jeffrey Doty,

Summary : You have maelware on your network/system. Do you freak out or go about your day? Basic maelware analysis isn't too difficult and can be done by most Sys Admins. This talk will walk you through how most maelware is distributed, how to look for it in your logs and how to determine the basic functionality of the maelware sample. The goal of this talk is to empower Sys admins with the skills to know what just happened on their network. Was this website that my user visited compromised? Did that user get infected with maelware? Is my firewall blocking the command and control traffic? Or is this something more serious that a professional maelware analyst needs to look at?