Book Image

Advanced Malware Analysis [Video]

By : Munir Njenga
Book Image

Advanced Malware Analysis [Video]

By: Munir Njenga

Overview of this book

In this video course, we cover advanced malware analysis topics. Towards this goal, we first understand the behavior of different classes of malware. Such knowledge helps us to easily categorize malware based on its characteristic. We see how sophisticated malware can use techniques to either evade detection or increase its damage and access to the system. Then we learn advanced techniques in static and dynamic malware analysis and cover the details and powerful features of OllyDbg, IDA Pro, and WINDBG. We also explore defense mechanisms against malware, create a signature for malware, and set up an intrusion detection system (IDS) to prevent attacks. Finally, we cover the concept of packers and unpackers, and explore how to unpack packed malware to analyze it. The code bundle for this video course is available at- https://github.com/PacktPublishing/-Advanced-Malware-Analysis

Related Content you might be interested in

Current Title:

Small book image
Advanced Malware Analysis [Video]
Munir Njenga
Sep, 2018 | 4 hours 3 minutes
No titles found
Table of Contents (6 chapters)
Free Chapter
1
Exploring Malware Functionalities
The Course Overview
Backdoors
Keyloggers and Information Stealers
Downloaders
Ransomware
Rootkits
2
Malware Advanced Techniques
Privilege Escalation
Persistence Methods
Data Encoding
Covert Launching Techniques
3
Advanced Dynamic Malware Analysis
Using a Debugger
An Overview of the Windows Environment
User Mode Debugging
Malware Analysis Using OllyDbg
Features of OllyDbg
Kernel Mode Debugging
Malware Analysis Using WINDBG
Features of WINDBG
4
Advanced Static Malware Analysis
Advanced Notes on the x86 Architecture
How a Disassembler Can Help Us
Loading and Navigating Using IDA Pro
Functions in IDA
IDA Pro Graphic Features
Analysing Malware Using IDA Pro
5
How to Detect and Defend against Malware in a Network
Malware Detection Techniques
Steps to Clean a Compromised Network
How Intrusion Detection Systems Work
An Introduction to Snort
How to Setup Snort?
6
How to Deal with Evasive Malware
How Do Packers Work?
How to Detect Packed Malware?
How to Unpack a Malware Program?
Examples of Unpacking a Malware Program
Chapter 1
Exploring Malware Functionalities
Content Locked
Section 5
Ransomware
Ransomware has been one of the biggest threats in the current malware space. This video aims to give an understanding of what ransomware is and what distinguishes it from other malware. - Understand what ransomware is and how it differs from other forms of malware - Gain an understanding of the working of ransomware and various examples of it - Understand how to prevent infection through ransomware. These practices not only help in day-to-day use but are also applicable to analysts and for preventing self-infection.
Previous Section
End of Section 5
Next Section