Black Hat USA Registration Black Hat USA Registration Black Hat USA Briefings Black Hat USA Briefings Black Hat USA Training Black Hat USA Training Black Hat USA Schedule Black Hat USA Schedule Black Hat USA Sponsors Black Hat USA Sponsors Black Hat  USA Special Events Black Hat  USA Special Events Black Hat USA Venue Black Hat USA Venue
 
 

On This Page

Malware Analysis: Black Hat Edition

Mandiant | July 27-28 & 29-30


Regular

$2500

Ends May 31

Late

$2700

Ends July 24

Onsite

$2900

Ends July 30



Overview

Almost every computer incident involves a trojan, backdoor, virus, or rootkit. Incident responders must be able to perform rapid analysis on the malware encountered in an effort to cure current infections and prevent future ones. This course provides a rapid introduction to the tools and methodologies used to perform malware analysis on executables found on Windows systems using a practical, hands-on approach. Students will learn how to find the functionality of a program by analyzing disassembly and by watching how it modifies a system and its resources as it runs in a debugger. They will learn how to extract host and network-based indicators from a malicious program. They will be taught about dynamic analysis and the Windows APIs most often used by malware authors. Each section is filled with in-class demonstrations and hands-on labs with real malware where the students practice what they have learned. Students will receive a FREE copy of the book, "Practical Malware Analysis" written by Mike Sikorski.


WHAT YOU WILL LEARN


WHO SHOULD ATTEND THE CLASS

Software developers, information security professionals, incident responders, computer security researchers, puzzle lovers, corporate investigators or others requiring an understanding of how malware works and the steps and processes involved in performing malware analysis.


WHAT TO BRING

Students must bring their own laptop with VMware Workstation, Server or Fusion installed (VMware Player is acceptable, but not recommended). Laptops should have at least 20GB of free space.

Students who cannot meet the laptop requirements because of onsite registration or other reasons may contact MANDIANT at [email protected] to see if a laptop can be provided for you.


WHAT YOU WILL GET


PREREQUISITES


Trainers

Steve Davis is a Principal Consultant in Mandiant's Alexandria, Virginia, office. He specializes in reverse engineering. Mr. Davis has developed both offensive and defensive software while at Mandiant and previous employers. He has also spoken at DEF CON, Black Hat and a variety of other security conferences.