BSidesIOWA 2015 Track2: Assessing Network Sandboxes by Jared McLaren

It seems that no network security model is complete without the addition of an automated malware analysis product. These systems keep an eye on the wire for potentially malicious files and study their behavior in a presumably safe, sandboxed environment. With the number of products rushing to market in this space, it’s essential that security professionals be armed with information about their operation, effectiveness and pitfalls. This talk will give the attendee actionable information regarding general architectures, product assessment, vendor “gotcha’s”, and how to take advantage of automated detonation.