Building a Test Environment to Safely Study Self-Propagating Malware

In May of 2024 the Information Trust Institute worked with an industry partner in the insurance sector to study the effectiveness of self-propagating malware in various network topologies. To facilitate this investigation ITI constructed a malware testbed that allowed the malware to propagate through windows 10 networks of various configurations without allowing the worm to break out and disrupt unintended targets. In this talk we will discuss our goals and the approach we used to achieve them.

About this event:

Presenters:

  • Logan Marlow, Senior Research Programmer, Information Trust Institute
  • Matthew Needham, Research Systems Engineer, Information Trust Institute

Track:

Software, Security, Data, and DevOps

Experience Needed:

All Levels

Learning Outcome:

Learners will understand one approach to building a secure testing environment that can be used to perform malware research.

Maximum Capacity:

No maximum capacity

Additional Keywords:

Malware, self-propagation, worm, WannaCry, Research, Testbed, Proxmox, PVE, Networking, Metasploit

Time:

11 am November 12

Locations:

  • Alma Mater
  • Zoom B