# INetSim
> Emulate internet services (HTTP, HTTPS, DNS, FTP, SMTP) for malware analysis in isolated labs

**Category:** [[categories/explore-network-interactions-services|Explore Network Interactions > Services]] | **Tier:** Rich (FOR610)
**Docs:** [https://docs.remnux.org/discover-the-tools/explore+network+interactions/services](https://docs.remnux.org/discover-the-tools/explore+network+interactions/services)

## Usage
```bash
inetsim
```

## Recipes
- [[recipes/dns-interception-setup|Set Up DNS + HTTP Interception]]

## Workflows
- [[workflows/behavioral-analysis-workflow|Behavioral Analysis]] — Step 2: Network Interception Setup
- [[workflows/network-interception-workflow|Network Traffic Interception]] — Step 2: Service Emulation

## Related Tools
- [[tools/dnsresolver|dnsresolver.py]] — DNS resolver tool for dynamic analysis with wildcard and tra
- [[tools/fakedns|fakedns]] — Fake DNS server that resolves all queries to a specified IP 
- [[tools/fakemail|fakemail]] — Intercept and examine SMTP email activity with this fake SMT
- [[tools/fakenet-ng|fakenet-ng]] — Emulate network services (HTTP, DNS, SMTP, FTP) to intercept
- [[tools/httpd|httpd]] — Simple HTTP server on REMnux for simulating C2 web servers

## FOR610
**Labs:** 1.7
**Sections:** 1

#service-emulation #network-simulation #lab-setup