
This video gives an overview of the entire course.
We are going to learn what exactly backdoors are and how they operate through examples.
Learn what keyloggers are and how they contribute to information theft. Additionally it enables an attacker gain insight as to how they operate.
This video gives an understanding of the various stages of a malware attack and how downloaders contribute to the cycle. It also discusses the modes of distribution to give insights for prevention.
Ransomware has been one of the biggest threats in the current malware space. This video aims to give an understanding of what ransomware is and what distinguishes it from other malware.
Rootkits are very sophisticated forms of malware and this video explores what they are, their effects, and various types of rootkits in the wild.
See what exactly privilege escalation is and its various manifestations as well as types.
This video aims to impart knowledge as to what persistence is and various strategies used by malware to create persistence on a network.
This video gives an understanding of what data encoding is, the methods used to achieve it, and its purpose in malware analysis.
In this video, we will cover various methods in which launching of malware is done covertly, and learn what this actually is.
Take a look at what debuggers are and the various modes in which debuggers work.
This video aims to impart knowledge of the Windows environment and its structure. The main focus is on three layers: application, user, and kernel mode.
This video gives an understanding of what user mode debugging is, its characteristics and usage, as well as some examples of user mode debuggers.
In this video, we will cover how to use OllyDbg in a slightly more advanced way for user mode debugging.
In this video we will cover some key advanced features in OllyDbg.
We will have an overview of kernel mode debugging, debuggers that use this, and some characteristics unique to kernel mode debugging.
In this video we will cover how to perform a kernel mode debug using WINDBG. This will be done using a kernel dump since the specimen involves one machine as opposed to two as is usually required.
In this video, we will cover some key advanced features of WINDBG.
Gain a deeper understanding of the x86 architecture to add to your understanding of registers. This will include system calls, assembly sections, common functions, and examples.
This video aims to show the relevance of a disassembler in static analysis and some scenarios where static analysis may be more efficient than dynamic analysis.
This video teaches how to choose the right context in which one would load a sample in IDA Pro. We cover navigating through the various sections once a sample is loaded.
In this video, we will cover how to use functions in IDA, what they are, and how to redefine them.
We will cover some key elements in the IDA Pro graphical user interface, what they are for, and when to use them.
In this video, we will cover some concepts of IDA Pro and see how to use them to analyze a malware sample.
This video seeks to explain various malware techniques and how strategies can be developed around them for detection purposes.
How to detect a compromise in a network and the steps to clean up the network to reduce the possibility of reoccurrence or spread of the attack
This video teaches you how IDS systems work and the various strategies that most of them use to detect anomalies.
We drill down to a key open source IDS system known as Snort and breakdown what it is, its features, as well as its applications.
We will cover how to download, install, configure, and setup Snort.
Learn how to create custom signatures to detect specific elements on the network based on business case.
Learn about hybrid analysis and its benefits within the malware analysis space.
See what packers are, a few examples of them, and how packers work.
In this video, you will learn how to detect packed malware using various strategies
This video teaches you how to unpack a malware program in an automated and manual way.
In this video, we will cover practical examples of unpacking a malware program.
In this video course, we cover advanced malware analysis topics. Towards this goal, we first understand the behavior of different classes of malware. Such knowledge helps us to easily categorize malware based on its characteristic. We see how sophisticated malware can use techniques to either evade detection or increase its damage and access to the system. Then we learn advanced techniques in static and dynamic malware analysis and cover the details and powerful features of OllyDbg, IDA Pro, and WINDBG. We also explore defense mechanisms against malware, create a signature for malware, and set up an intrusion detection system (IDS) to prevent attacks.
About the Author
Munir Njenga is a self-driven, multi-talented, technology enthusiast, cybersecurity consultant, and researcher. He mainly focuses on malware analysis, and web- and mobile-based application testing and methodologies.
His skills and competencies stem from his active involvement in engagements that deliver advisory services such as network security reviews, security course development, training and capacity building, mobile and internet banking security reviews (BSS, MSC, HLR/AUC, IN, NGN, GGSN/SGSN), web applications, and network attack and penetration testing.
Apart from his security hat, he is a poet, graphic designer, blogger, tool/application tester, social media marketer, web 2.0 developer and designer, naturalist, and traveller.