The V-network testbed for malware analysis

Muhammad Aminu Ahmad, Steve Woodhead, Diane Gan
2016 2016 International Conference on Advanced Communication Control and Computing Technologies (ICACCCT)  
This paper presents a virtualised network environment that serves as a stable and re-usable platform for the analysis of malware propagation. The platform, which has been developed using VMware virtualisation technology, enables the use of either a graphical user interface or scripts to create virtual networks, clone, restart and take snapshots of virtual machines, reset experiments, clean virtual machines and manage the entire infrastructure remotely. The virtualised environment uses open
more » ... e routing software to support the deployment of intrusion detection systems and other malware attack sensors, and is therefore suitable for evaluating countermeasure systems before deployment on live networks. An empirical analysis of network worm propagation has been conducted using worm outbreak experiments on Class A size networks to demonstrate the capability of the developed platform.
doi:10.1109/icaccct.2016.7831716 fatcat:wkvjenqkubavbpi2tipjk2xpo4