Abstract
Behavioural software analysis is suggested by several research communities as a principle to complement the traditional signature-based anti-virus tools. This paper presents a novel open-source testbed for behavioural software analysis, designed to meet current trends in the malware community by allowing controlled access to the Internet in the analysis phase. General malware detection theories are studied and their principles combined to provide a powerful software analysis environment. A novel way of using honeypot technology is proposed to build a testbed that is able to analyse current threats.
