A Design for a Secure Malware Laboratory

Xavier Riofrío; Fernando Salinas-Herrera; David Galindo

doi:10.1007/978-3-030-35740-5_19

A Design for a Secure Malware Laboratory

Xavier Riofrío, Fernando Salinas-Herrera, David Galindo

Producción científica: Capítulo del libro/informe/acta de congreso › Contribución a la conferencia › revisión exhaustiva

Resumen

Malicious software teaching is based on theory, consequently, students do not experiment with real practice. Therefore, when they confront a rising incidence in the real world, the response is not usually at the adequate time neither valuable enough. A practical focus will provide a different understanding of the problem due to the fact that the student will be able to recognise suspicious behaviour. This paper proposes the design of an entire platform that experiments with topics related to malware in a controlled and safe environment. The strategy presented is a virtual machine that integrates tools including Metasploit Framework, vulnerable systems, and software scanners. Besides, a web tutorial is available for user orientation; it incorporates additional exclusive components for Metasploit and a tutorial to develop them.

Idioma original	Inglés
Título de la publicación alojada	Information and Communication Technologies of Ecuador, TIC.EC 2019
Editores	Efraín Fonseca C, Germania Rodríguez Morales, Marcos Orellana Cordero, Miguel Botto-Tobar, Esteban Crespo Martínez, Andrés Patiño León
Editorial	Springer
Páginas	273-286
Número de páginas	14
ISBN (versión impresa)	9783030357399
DOI	https://doi.org/10.1007/978-3-030-35740-5_19
Estado	Publicada - 2020
Publicado de forma externa	Sí
Evento	6th Conference on Information and Communication Technologies, TIC.EC 2019 - Cuenca, Ecuador Duración: 27 nov. 2019 → 29 nov. 2019

Serie de la publicación

Nombre	Advances in Intelligent Systems and Computing
Volumen	1099
ISSN (versión impresa)	2194-5357
ISSN (versión digital)	2194-5365

Conferencia

Conferencia	6th Conference on Information and Communication Technologies, TIC.EC 2019
País/Territorio	Ecuador
Ciudad	Cuenca
Período	27/11/19 → 29/11/19

Acceder al documento

10.1007/978-3-030-35740-5_19

Otros archivos y enlaces

Enlace a la publicación en Scopus

Citar esto

Riofrío, X., Salinas-Herrera, F., & Galindo, D. (2020). A Design for a Secure Malware Laboratory. En E. Fonseca C, G. Rodríguez Morales, M. Orellana Cordero, M. Botto-Tobar, E. Crespo Martínez, & A. Patiño León (Eds.), Information and Communication Technologies of Ecuador, TIC.EC 2019 (pp. 273-286). (Advances in Intelligent Systems and Computing; Vol. 1099). Springer. https://doi.org/10.1007/978-3-030-35740-5_19

Riofrío, Xavier ; Salinas-Herrera, Fernando ; Galindo, David. / A Design for a Secure Malware Laboratory. Information and Communication Technologies of Ecuador, TIC.EC 2019. editor / Efraín Fonseca C ; Germania Rodríguez Morales ; Marcos Orellana Cordero ; Miguel Botto-Tobar ; Esteban Crespo Martínez ; Andrés Patiño León. Springer, 2020. pp. 273-286 (Advances in Intelligent Systems and Computing).

@inproceedings{ff4e6aedef554f9b9782347a1a59ac3b,

title = "A Design for a Secure Malware Laboratory",

abstract = "Malicious software teaching is based on theory, consequently, students do not experiment with real practice. Therefore, when they confront a rising incidence in the real world, the response is not usually at the adequate time neither valuable enough. A practical focus will provide a different understanding of the problem due to the fact that the student will be able to recognise suspicious behaviour. This paper proposes the design of an entire platform that experiments with topics related to malware in a controlled and safe environment. The strategy presented is a virtual machine that integrates tools including Metasploit Framework, vulnerable systems, and software scanners. Besides, a web tutorial is available for user orientation; it incorporates additional exclusive components for Metasploit and a tutorial to develop them.",

keywords = "Course, Malware, Metasploit, Practice, Virus",

author = "Xavier Riofr{\'i}o and Fernando Salinas-Herrera and David Galindo",

note = "Publisher Copyright: {\textcopyright} 2020, Springer Nature Switzerland AG.; 6th Conference on Information and Communication Technologies, TIC.EC 2019 ; Conference date: 27-11-2019 Through 29-11-2019",

year = "2020",

doi = "10.1007/978-3-030-35740-5\_19",

language = "Ingl{\'e}s",

isbn = "9783030357399",

series = "Advances in Intelligent Systems and Computing",

publisher = "Springer",

pages = "273--286",

editor = "\{Fonseca C\}, Efra{\'i}n and \{Rodr{\'i}guez Morales\}, Germania and \{Orellana Cordero\}, Marcos and Miguel Botto-Tobar and \{Crespo Mart{\'i}nez\}, Esteban and \{Pati{\~n}o Le{\'o}n\}, Andr{\'e}s",

booktitle = "Information and Communication Technologies of Ecuador, TIC.EC 2019",

}

Riofrío, X, Salinas-Herrera, F & Galindo, D 2020, A Design for a Secure Malware Laboratory. En E Fonseca C, G Rodríguez Morales, M Orellana Cordero, M Botto-Tobar, E Crespo Martínez & A Patiño León (eds.), Information and Communication Technologies of Ecuador, TIC.EC 2019. Advances in Intelligent Systems and Computing, vol. 1099, Springer, pp. 273-286, 6th Conference on Information and Communication Technologies, TIC.EC 2019, Cuenca, Ecuador, 27/11/19. https://doi.org/10.1007/978-3-030-35740-5_19

A Design for a Secure Malware Laboratory. / Riofrío, Xavier; Salinas-Herrera, Fernando; Galindo, David.
Information and Communication Technologies of Ecuador, TIC.EC 2019. ed. / Efraín Fonseca C; Germania Rodríguez Morales; Marcos Orellana Cordero; Miguel Botto-Tobar; Esteban Crespo Martínez; Andrés Patiño León. Springer, 2020. p. 273-286 (Advances in Intelligent Systems and Computing; Vol. 1099).

Producción científica: Capítulo del libro/informe/acta de congreso › Contribución a la conferencia › revisión exhaustiva

TY - GEN

T1 - A Design for a Secure Malware Laboratory

AU - Riofrío, Xavier

AU - Salinas-Herrera, Fernando

AU - Galindo, David

PY - 2020

Y1 - 2020

N2 - Malicious software teaching is based on theory, consequently, students do not experiment with real practice. Therefore, when they confront a rising incidence in the real world, the response is not usually at the adequate time neither valuable enough. A practical focus will provide a different understanding of the problem due to the fact that the student will be able to recognise suspicious behaviour. This paper proposes the design of an entire platform that experiments with topics related to malware in a controlled and safe environment. The strategy presented is a virtual machine that integrates tools including Metasploit Framework, vulnerable systems, and software scanners. Besides, a web tutorial is available for user orientation; it incorporates additional exclusive components for Metasploit and a tutorial to develop them.

AB - Malicious software teaching is based on theory, consequently, students do not experiment with real practice. Therefore, when they confront a rising incidence in the real world, the response is not usually at the adequate time neither valuable enough. A practical focus will provide a different understanding of the problem due to the fact that the student will be able to recognise suspicious behaviour. This paper proposes the design of an entire platform that experiments with topics related to malware in a controlled and safe environment. The strategy presented is a virtual machine that integrates tools including Metasploit Framework, vulnerable systems, and software scanners. Besides, a web tutorial is available for user orientation; it incorporates additional exclusive components for Metasploit and a tutorial to develop them.

KW - Course

KW - Malware

KW - Metasploit

KW - Practice

KW - Virus

UR - https://www.scopus.com/pages/publications/85076544293

U2 - 10.1007/978-3-030-35740-5_19

DO - 10.1007/978-3-030-35740-5_19

M3 - Contribución a la conferencia

AN - SCOPUS:85076544293

SN - 9783030357399

T3 - Advances in Intelligent Systems and Computing

SP - 273

EP - 286

BT - Information and Communication Technologies of Ecuador, TIC.EC 2019

A2 - Fonseca C, Efraín

A2 - Rodríguez Morales, Germania

A2 - Orellana Cordero, Marcos

A2 - Botto-Tobar, Miguel

A2 - Crespo Martínez, Esteban

A2 - Patiño León, Andrés

PB - Springer

T2 - 6th Conference on Information and Communication Technologies, TIC.EC 2019

Y2 - 27 November 2019 through 29 November 2019

ER -

Riofrío X, Salinas-Herrera F, Galindo D. A Design for a Secure Malware Laboratory. En Fonseca C E, Rodríguez Morales G, Orellana Cordero M, Botto-Tobar M, Crespo Martínez E, Patiño León A, editores, Information and Communication Technologies of Ecuador, TIC.EC 2019. Springer. 2020. p. 273-286. (Advances in Intelligent Systems and Computing). doi: 10.1007/978-3-030-35740-5_19

A Design for a Secure Malware Laboratory

Resumen

Serie de la publicación

Conferencia

Acceder al documento

Otros archivos y enlaces

Huella

Citar esto