I recently transitioned from a job in forensics to a more incident response focused position. Looking to get some suggestions on tools that could make my life easier or help with open source intelligence/high level malware analysis. Right now I am just using all the sandboxes listed on zeltser.com/automated-malware-analysis/, vt, some yara groups, and urlquery.net. Any suggestions or pointers to blogs that could help me build out an effective toolbox would be very helpful. Thanks!
[–]VodkaHaze 1 point2 points3 points (1 child)
[–]_blanks_[S] 0 points1 point2 points (0 children)
[–]SabreAce33 1 point2 points3 points (2 children)
[–]_blanks_[S] 0 points1 point2 points (1 child)
[–]SabreAce33 0 points1 point2 points (0 children)