Compare courses
Register
Georgia Tech Professional Education

Introduction to Malware Analysis

Oct 29—31, 2019
3 days
Atlanta, Georgia, United States
USD 1695
USD 565 per day

How it works

Disclaimer

Coursalytics is an independent platform to find, compare, and book executive courses. Coursalytics is not endorsed by, sponsored by, or otherwise affiliated with Georgia Tech Professional Education.

Full disclaimer.

Description

Malware is a growing threat to the information and intellectual property of organizations. This introductory course will provide a foundational understanding of malicious software, how malware has shaped the global cybersecurity landscape, and malware's future impact. Discussions and hands-on exercises will demonstrate malware analysis processes and their complexities, as well as illustrate how to appropriately size, design, and build an analytical capability best suited for your organization. You will prepare an analysis test-bed and analyze multiple malware samples. Explore advanced techniques and tools, including data exfiltration and stealthy operation, to understand the tactics of malware authors.

What You Will Learn

  • Malware overview
  • Analysis environment creation
  • Static analysis
  • Dynamic analysis
  • Memory analysis

How You Will Benefit

  • Develop foundational knowledge of malicious software, including its forms, traits, author motivations, and impacts.
  • Identify, discuss, and practice sound malware analysis processes.
  • Conduct analysis on multiple malware samples using modern disassembly, debugging, and analysis tools.
  • Determine how to build an analytical capability to fit your organization, considering resource limitation and best practices.
  • Discover black hat exploitation techniques, obfuscation techniques, and indicators of compromise.

Content

MALWARE OVERVIEW

  • Trends
  • Capabilities
  • Delivery mechanisms
  • Obfuscation techniques

ANALYSIS ENVIRONMENT CREATION

  • Virtualization
  • Maintaining anonymity
  • Tools

STATIC ANALYSIS

  • Assembly language overview/review
  • Reverse engineering
  • Analyzing with a disassembler
  • Using static tools for analysis (hashes, strings, libraries)

DYNAMIC ANALYSIS

  • Analyzing with a debugger
  • Monitoring processes and registry changes
  • Analyzing network traffic
  • Sandboxes

MEMORY ANALYSIS

  • Memory dumps
  • Identifying suspicious indicators

Who should attend

This course is designed for information assurance officers (IAOs) and managers (IAMs), information security professionals charged with threat detection and incident response, and IT professionals seeking a greater understanding of potential malware threats and exploitation techniques. Familiarity with programming is assumed.

Experts

Barbara Fox (CISSP) is a Research Scientist in the Georgia Tech Research Institute (GTRI) Cyber Technology and Information Security Laboratory (CTISL). Her research focuses on risk management, emerging threats, malware analysis, and insider threat. Ms. Fox combines a rich background in instructio...

Next dates

Oct 29—31, 2019
3 days
Atlanta, Georgia, United States
USD 1695
USD 565 per day

How it works

Show more