Pybox - a python sandbox

The application of dynamic malware analysis in order to automate the monitoring of malware behavior has become increasingly important. For this purpose, so-called sandboxes are used. They provide the functionality to execute malware in a secure, controlled environment and observe its activities during runtime. While a variety of sandbox software, such as the GFI Sandbox (formerly CWSandbox) or the Joe Sandbox, is available, most solutions are closed-source. We present the design, implementation and evaluation of PyBox, a flexible and open-source sandbox written in Python. The application of a Python based analysis environment offers the opportunity of performing malware analyses on various operating systems as Python is available for almost every existing platform.

Engelberth, Markus; Göbel, Jan; Schönbein, Christian; Freiling, Felix C. (2012): Pybox - a python sandbox. SICHERHEIT 2012 – Sicherheit, Schutz und Zuverlässigkeit. Bonn: Gesellschaft für Informatik e.V.. PISSN: 1617-5468. ISBN: 978-3-88579-289-5. pp. 137-148. Regular Research Papers. Darmstadt. 7.-9. März 2012

Sammlungen

P195 - Sicherheit 2012 - Sicherheit, Schutz und Zuverlässigkeit

Komplettanzeige

Pybox - a python sandbox

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen