•  

Understanding malwares

A session at Application Security Forum - A Cyber Security Conference

Tuesday 4th November, 2014

9:00am to 5:30pm (CET)

More and more incidents involving malicious softwares are happening every day and automated solutions analysing malware in sandboxes are on the market. Still, understanding these reports requires technical skills and understandings of how malware are working. On another hand, more companies are tasking people with handling incidents internally.

This training has been designed in order to teach you the basics of malicious code analysis using recent techniques and tools that allow to ease-up the task. As malware analysis is no theoretical thing, practical labs will be performed in order to apply the concept and use the presented tools.

The following topics will be discussed during this fast-paced day:

Malware 101
basic files classifications
malicious code functionalities
when/why perform an analysis yourself

Static analysis
files categorisation
Microsoft PE categorisation
packers detection and basic unpacking
refresher on x86 assembly
IDA and plugins related to malicious code analysis like IDAscope

Dynamic analysis
sandboxed based analysis
semi-manual analysis using SysInternals
network flow analysis
full-manual analysis using debuggers

At the end of this training both the slides and lab manual will be given to students. This course will be given in english or french, depending on the participants

About the speaker

This person is speaking at this event.
Julien Bachmann

reversing, vulnerability research, operating systems internals bio from Twitter

1 attendee

  • Julien Bachmann

1 tracker

  • Sylvain MARET

Coverage of this session

Sign in to add slides, notes or videos to this session

Sign in to track this session

Tell your friends!

When

Time 9:00am5:30pm CET

Date Tue 4th November 2014

Short URL

lanyrd.com/sdczyb

View the schedule

Share

See something wrong?

Report an issue with this session