Malware Analysis
Subject Area
Learning Resources
Learn more by checking out these great sites.
CS6038/CS5138 Malware Analysis
learning-resource
This class will introduce the CS graduate students to malware concepts, malware analysis, and black-box reverse engineering techniques. The target audience is focused on computer science graduate students or undergraduate seniors without prior cyber security or malware experience. It is intended to introduce the students to types of malware, common attack recipes, some tools, and a wide array of malware analysis techniques.
Visit WebsiteMalware Dynamic Analysis
learning-resource
This introductory malware dynamic analysis class is dedicated to people who are starting to work on malware analysis or who want to know what kinds of artifacts left by malware can be detected via various tools. The class will be a hands-on class where students can use various tools to look for how malware is: Persisting, Communicating, and Hiding.
Visit WebsiteReversing C++
learning-resource
This module is part of the CLARK Undergraduate Reverse Engineering course. Reversing C++ can pose unique challenges in the use of objects - which are essentially an extension of C structures. In this module you will learn how to identify C++ objects while reversing, trace polymorphic behavior through the use of virtual functions and virtual function tables, and identify member functions through the THIS pointer. This module by Josh Stroschein, NSA Funded Curriculum is licensed under CC BY-NC-SA 4.0.
Visit WebsiteRootkits: What they are, and how to find them
learning-resource
Rootkits are a class of malware which are dedicated to hiding the attacker’s presence on a compromised system. This class will focus on understanding how rootkits work, and what tools can be used to help find them.
Visit WebsiteVideo Playlist: Malware Dynamic Analysis
learning-resource
A Youtube playlist of the OpenSecurityTraining.info 'Malware Dynamic Analysis' course being delivered. This introductory malware dynamic analysis class is dedicated to people who are starting to work on malware analysis or who want to know what kinds of artifacts left by malware can be detected via various tools. The class will be a hands-on class where students can use various tools to look for how malware is: Persisting, Communicating, and Hiding.
Visit WebsiteVideo Playlist: Reverse Engineering Malware
learning-resource
A Youtube playlist of the OpenSecurityTraining.info 'Reverse Engineering Malware' course being delivered. This class picks up where the Introduction to Reverse Engineering Software course left off, exploring how static reverse engineering techniques can be used to understand what a piece of malware does and how it can be removed.
Visit WebsiteVideo Playlist: Rootkits: What they are, and how to find them
learning-resource
A Youtube playlist of the OpenSecurityTraining.info 'Rootkits' course being delivered. Rootkits are a class of malware which are dedicated to hiding the attacker’s presence on a compromised system. This class will focus on understanding how rootkits work, and what tools can be used to help find them.
Visit Website