Writing enterprise grade security tools in Python: Lessons Learned
Abhishek%00 Awasthi%00 (~abhishek00) |
Description:
In this talk, I explore the challenges faced when writing an enterprise grade security tool in python. The talk mostly focuses on a fully automated malware analysis sandbox I developed at IIT Palakkad. This sandbox supports all stages of a malware analysis cycle, with suppport for Windows, Linux, Android executable and PDF documents for static analysis, Windows and Linux for Dynamc Analysis and Windows for memory analysis. I discuss the issues I faced especially with creating the dynamic analyzer based on virtualbox and vmware and the reasons for lack of open source malware analysis sandboxes. I discuss about Cuckoo sandbox and its current status which has been a motivation for starting this project. I also discuss the issues in Cuckoo sandbox that I tried to rectify in my project. A short discussion of web application security automation framework will also be presented.
Prerequisites:
- A basic understanding of computer networks, cyber security and programming.
Speaker Info:
I am currently working at ICICI Bank as a data scientist. I have done my masters in data science from IIT Palakkad. I have a profound interest in cyber security and using emerging technologies to build better security solutions .