From the course: CompTIA Security+ (SY0-601) Cert Prep: 8 Network Security Design and Implementation
Unlock the full course today
Join today to access over 22,500 courses taught by industry experts or purchase this course individually.
Cuckoo
- [Narrator] Cuckoo is a malware analysis tool. More specifically Cuckoo is a sandbox environment that allows you to test suspicious files to determine whether they might display malicious activity. It's very powerful and has some quite advanced features. And best of all Cuckoo is an open source tool that you can use for free. Cuckoo is able to analyze malicious executable files. That's the core functionality of any malware analysis tool. But it can also look at office productivity documents, PDFs and other file types, email messages and even website URLs. Cuckoo traces the API calls made by suspicious files as well as their other system behavior and it also uses Tcpdump to capture any network traffic generated by the file. Cuckoo can perform deep memory analysis and it does all this with a variety of virtualized platforms including Windows, Mac OS, Linux and Android environments. If you find yourself working in a role where…
Contents
-
-
-
-
-
-
-
-
-
-
-
(Locked)
Ping and traceroute5m 48s
-
(Locked)
DNS tools4m 34s
-
(Locked)
Ipconfig, ifconfig, and route2m 28s
-
(Locked)
netstat1m 5s
-
(Locked)
netcat1m 47s
-
(Locked)
ARP1m 23s
-
(Locked)
curl3m 15s
-
(Locked)
theHarvester2m 57s
-
(Locked)
Cuckoo1m 4s
-
(Locked)
Port scanners3m 9s
-
(Locked)
Vulnerability scanners2m 21s
-
(Locked)
-