Advanced Malware Analysis [video], published by Packt
Switch branches/tags
Nothing to show
Clone or download
Latest commit e9f8e87 Sep 27, 2018
Permalink
Failed to load latest commit information.
Section 2
Section 3
Section 5
Section 6
LICENSE
README.md readme updated Sep 27, 2018

README.md

Advanced Malware Analysis [Video]

This is the code repository for Advanced Malware Analysis [Video], published by Packt. It contains all the supporting project files necessary to work through the video course from start to finish.

About the Video Course

In this video course, we cover advanced malware analysis topics. Towards this goal, we first understand the behavior of different classes of malware. Such knowledge helps us to easily categorize malware based on its characteristic. We see how sophisticated malware can use techniques to either evade detection or increase its damage and access to the system. Then we learn advanced techniques in static and dynamic malware analysis and cover the details and powerful features of OllyDbg, IDA Pro, and WINDBG. We also explore defense mechanisms against malware, create a signature for malware, and set up an intrusion detection system (IDS) to prevent attacks. Finally, we cover the concept of packers and unpackers, and explore how to unpack packed malware to analyze it.

What You Will Learn

  • Malware behavior based on its class
  • Advanced dynamic and static malware analysis
  • Gain experience in working with OllyDbg, WINDBG, and IDA Pro
  • Detect and defend against malware
  • Master how packers and unpackers work

Instructions and Navigation

Assumed Knowledge

To fully benefit from the coverage included in this course, you will need:

  • Fundamental programming concepts (assembly)
  • Fundamentals of malware analysis (Static and dynamic analysis)
  • Familiarity with Git and GitHub for source control
  • An understanding of basic Windows operating systems
  • (Optional) Experience with virtual machines
  • Technical Requirements

    This course has the following software requirements:
    ● An editor like notepad++ ● Virtual Box

    Related Products