I'm starting out in Malware Research / Malware Analysis. I am reading a book called "Practical Guide to Malware Analysis," which touches this in the 2nd chapter, before approaching Dynamical Analysis (malware detonation). However, it mentions 2 options for Virtualization approach:
Set Network Adapter to Host-Only. That way it should isolate VM from Network, but still have access to it via Host - not sure how that works though.
A multi-VM setup where one VM is set for Services and the other for Analysis, and both are joined to the same Custom VMNet.
My problem is that there are no step-by-step instructions on how to do this. I am hoping to get answers here. My most curious question is: Is setting Network Adapter to Host-Only the only thing to do to isolate the VM for Malware Analysis?
Many sites that I Googled mention just this (and also taking snapshots, etc.). Thanks.