What is Buster Sandbox Analyzer,How It Can Be Used To Detect Backdoors In System

Buster Sandbox Analyzer is a tools which can be used to find or analyze the behavior of processes and changes made to system and then evaluate if they are malware suspicious.In a short term it is used for malware testing to detect whether Program is Backdoored with RATS,DDOS,BOTS,KEYLOGGERS.

Working Of  BSA:

BSA detect the file changes occurs in a system and report them to the user.A file system change happens when a file is created, deleted or modified. 

Depending of what type of file has been created (executable, library, javascript, batch, etc) and where was created (what folder) we will be able to get valuable information in the form of report where user can get to an idea whether the program is infected or not.

Major Detection's Of  BSA:

The Major Detection Of BSA are:

1.Registry Changes:Changes occurred in registry keys

2.File System Changes:Changes occurs in hard disks

3.Port Changes:Changes occur in port values

The current version is 1.88.The Buster Sandbox Analyzer works with the combination of sandboxie which i explained earlier in a post. 

Example Of A Report:

This is an example of how the report is generated by buster sandbox analyzer and i will post the tutorial in next post

Chao.........!