Malware Command and Control
Malware usually needs to talk out of the network to do it's thing, and that's the perfect time for you to catch them. Command and Control is a critical part of the cyber killchain, and being a Wireshark killer is invaluable. This is my bread and butter.
Follow this tutorial: Unit 42: Trickbot
If you find yourself hopelessly addicted to malware C2 and want to get great at it check out the following resources:
- More from Unit 42
- From the same person who wrote all the Unit 42 stuff, a ton more exercises are available
For your assignment submit what the Trickbot malware was doing for C2 in the tutorial you followed.