Malware Traffic Analysis
This blog is a valuable resource for security professionals and threat researchers who want to delve into network behavior during malware infections, primarily in Windows environments. The blog offers a collection of compressed files (zip) containing real malware samples, as well as packet captures (pcaps) that may contain malicious traffic. It is important to note that handling these files on a Windows system presents infection risks. Therefore, users should take appropriate precautions and assume full responsibility for any loss or damage resulting from the use of the blog's information. Despite the inherent risks, this blog offers a unique opportunity for security professionals to enhance their knowledge of malware nuances and hone their threat detection and response skills.
Visit, enjoy and give credit to the owner (the blog is not mine):
https://www.malware-traffic-analysis.net/index.html
https://www.malware-traffic-analysis.net/archived/index.html
https://infosec.exchange/@malware_traffic
TRAFFIC ANALYSIS EXERCISES
2023-07 -- Crossing the Line: Unit 42 Wireshark Quiz for RedLine Stealer
2023-07 -- RedLine Stealer: Answers to Unit Wireshark Quiz
2023-04 -- Cold as Ice: Unit 42 Wireshark Quiz for IcedID
2023-04 -- Cold as Ice: Answers to Unit 42 Wireshark Quiz for IcedID
2023-03 -- Finding Gozi: Unit 42 Wireshark Quiz, March 2023
2023-03 -- Finding Gozi: Answers to Unit 42 Wireshark Quiz, March 2023
2023-02 -- Unit 42 Wireshark Quiz, February 2023
2023-02 -- Answers to Unit 42 Wireshark Quiz, February 2023
2023-01 -- Unit 42 Wireshark Quiz, January 2023
2023-01 -- Answers to Unit 42 Wireshark Quiz, January 2023