Port monitoring, process monitoring, and registry monitoring are all considered what type of malware analysis technique?

Port monitoring, process monitoring, and registry monitoring are examples of dynamic analysis techniques in malware analysis. Dynamic analysis involves executing malware in a controlled environment, such as a sandbox, where its behavior can be observed in real-time. This approach enables analysts to monitor how the malware interacts with system components, network resources, and the overall environment during execution.

By engaging in these monitoring activities, analysts can gather crucial information on the malware’s operational characteristics, such as its network communication patterns, file system modifications, and changes to system processes or registries. This is essential for understanding the malware's impact and developing effective remediation strategies.

In contrast, static analysis techniques typically involve examining the malware code without execution, looking for patterns or signatures, which wouldn't provide insights into the real-time behavior seen in dynamic analysis. Therefore, the focus on observing live interactions and behaviors distinctly categorizes port, process, and registry monitoring as dynamic techniques in malware analysis.