I’m about to start a final year project for my BSc in CS. My project is about memory forensics of docker containers. I plan to compare the processes and their internet connections of a clean docker container and one infected with a crypto miner.
I’m good with the memory and network traffic analysis but I have never handled malware before. Can you point me to some reading/tutorials how to do this properly with sandboxes etc?