Training
Featured CourseView All Courses
Get a free hour of SANS training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
Cloud Security Training
Can't find what you are looking for?

Let us help.

Contact us
Community Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

Solutions for Emerging Risks

Discover tailored resources that translate emerging threats into actionable strategies

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Talk With an Expert
Talk With an Expert

Building an Automated Behavioral Malware Analysis Environment using Open Source Software

Download File
Building an Automated Behavioral Malware Analysis Environment using Open Source Software (PDF, 1.91MB)Published: 18 Jun, 2009
Created by
Jim Clausing
Jim Clausing

The first question one might ask is why build our own analysis environment when there are a growing number of services (free and otherwise) such as the Norman Sandbox, CWSandbox, Anubis, ThreatExpert, etc. that will do the analysis for us. The primary answer is that, for privacy and policy reasons, there are some samples of malware that we encounter on a regular basis that we simply are not at liberty to share with other entities or organizations with which we do not have privacy or non-disclosure agreements.

Meet the expert

Jim Clausing
Jim Clausing

Jim Clausing

Certified Instructor Candidate

Jim has been in the IT since 1981. His expertise ranges from systems and database administration to security and research in parallel processing and distributed systems.

Read more about Jim Clausing