Sandnet++ – A framework for analysing and visualising network traffic from malware

One important step in combating malware is to understand how it communicates over a computer network. Most malware has to communicate remotely, whether to infect further victims, exfiltrate stolen information or receive instructions.

Examining the network traffic generated by malware provides an opportunity to identify the unique features found only in malware traffic, and use these to distinguish it from benign traffic. Only if malware traffic is identifiable can it be blocked or otherwise disrupted.

This article presents Sandnet++, a framework for analysing and visualising network traffic from malware. We also present several case studies showing how the Sandnet++ framework can be used to extract malware traffic features, allowing better malware detection.

Vendor:: TechTarget ComputerWeekly.com
Posted:: Feb 8, 2021
Published:: Sep 2, 2016
Format:: PDF
Type:: Essential Guide

Already a Bitpipe member? Log in here

Download this Essential Guide!

Corporate Email Address:
You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

Please provide a Corporate Email Address.

This email address is already registered. Please log in.
First Name:
You forgot to provide your first name.
Last Name:
You forgot to provide your last name.
Company Name:
You forgot to provide a company name.
Job Title:
You forgot to provide a job title.
Seniority:
You forgot to select your seniority.
Job Function:
You forgot to select your job function.
# of employees:
You did not select the number of employees at your company.
Industry:
You did not select which industry you are in.
Sub-Industry:
You did not select which industry you are in.
Address 1:
You did not provide a full local address.
Address 2:
City/Town:
You did not provide a full local address.
Country:
You did not select the country you are from.
State/Province:

You did not provide a full local address.
Zip/Postal Code:
You did not provide a full local address.
Phone:
You forgot to provide a phone number.

This phone number format is not recognized. Please check the country and number.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.