610 - Reverse Engineering Malware Free Full Download Torrent

610 - Reverse Engineering Malware full version book was indexed by WarezHound on 2014-05-24 13:17:28 in Category > Books > Ebooks under the info hash 1f765d4b086db64e0d4c22ad3b555ea93f90b99f and was uploaded by Admin. This download package has a total file size of 1.02 GB containing 6 files.




SANS 610 - Reverse Engineering Malware (2010)



Description:


This popular malware analysis course has helped forensic investigators, incident responders, security engineers and IT administrators acquire practical skills for examining malicious programs that target and infect Windows systems. Knowing how to understand capabilities of malware is critical to the organization\'s ability to derive threat intelligence, so they can respond to information security incidents and fortify defenses. The course builds a strong foundation for analyzing malicious software using a variety of system and network monitoring utilities, a disassembler, a debugger and other tools useful for turning malware inside-out.

The course begins by covering fundamental aspects of malware analysis. You will learn how to set up an inexpensive and flexible laboratory for understanding the inner-workings of malicious software and will understand how to use the lab for uncovering characteristics of real-world malware samples. Then you will learn to examine the specimens behavioral patterns and code. The course continues by discussing essential x86 assembly language concepts. You will examine malicious code to understand its key components and execution flow. Additionally, you will learn to identify common malware characteristics by looking at suspicious Windows API patterns employed by bots, rootkits, keyloggers, downloaders and other types of malware.

TURN MALWARE INSIDE-OUT

You will also learn how to handle self-defending malware, learning to bypass the protection offered by packers and other anti-analysis methods. In addition, given the frequent use of browser malware for targeting systems, you will learn practical approaches to analyzing malicious browser scripts, deobfuscating JavaScript and VBScript to understand the nature of the attack.

You will also learn how to analyze malicious documents that take the form of Microsoft Office and Adobe PDF files. Such documents act as a common infection vector and may need to be examined when dealing with large-scale infections as well as targeted attacks. The course also explores memory forensics approaches to examining malicious software, especially useful if it exhibits rootkit characteristics.

The course culminates with a series of capture-the-flag style challenges, designed to reinforce the techniques learned in class and to provide additional opportunities for learning practical, hands-on malware analysis skills in a fun setting.

Hands-on workshop exercises are a critical aspect of this course and allow you to apply malware analysis techniques by examining malware in a lab that you control. When performing the exercises, you will study the supplied specimens\' behavioral patterns and examine key portions of their code. To support these activities, you will receive pre-built Windows and Linux virtual machines that include tools for examining and interacting with malware.



Contents:


1. Five PDFs

2. Tools/Labs

		Lab.rar (963.05 MB)
		610.1 - Malware Analysis Fundamentals.pdf (30.90 MB)
		610.3 - Malicious Code Analysis.pdf (15.31 MB)
		610.5 - Deeper Malware Analysis.pdf (15.12 MB)
		610.4 - Self-Defending Malware.pdf (13.05 MB)
		610.2 - Additional Malware Analysis Approaches.pdf (10.59 MB)

HTML Link:

Forum Link:

No comments