Introduction to Malware Reverse Engineering 

Attack Research (AR) is a boutique security firm located in Northern New Mexico which specializes in advanced information security, especially concerning targeted and sophisticated attacks. Rather than offering security-only focused solutions, AR works to understand the client’s business needs in order to tailor the best solution possible.AR brings extensive experience, operating in a broad variety of complex environments that include sensitive government networks and Fortune 500 companies ranging from embedded systems, finance, government, and avionics to oil & gas. AR is well known in the information security research community, having presented numerous times at Blackhat, Defcon, SANS and other similar security conferences.

Attack Research, LLC

Introduction to Malware Reverse Engineering is an innovative approach developed by Attack Research to analyze and understand malware rapidly. In this two-day course, students will learn how to be effective in understanding the inner workings of malware without any in-depth knowledge of assembly or development.  The course brings together topics that apply to basic reverse engineering as well as malware triage, incident response, and indicator of compromise development.  The course starts simple and high level and ramps up to becoming more technical and hands-on over time.
Students learn a range of techniques ranging from basic malware analysis methods and how to deal with sophisticated attackers to anti-analysis techniques.  This is achieved with hands-on exercises, using many common and uncommon tools for malware analysis and analyzing examples from a wide range of complexity. The students are also presented with real-world scenarios that Attack Research has encountered over decades of experience from incident response, breach assessments, and red team engagements.  This then presents information from an attacker’s perspective that is unique compared to other reverse engineering courses.
Like all Attack Research courses, this class is a combination of lecture, anecdotes, and hands-on exercises that help students retain the information. Each exercise is presented as challenge and then demonstrated for in-depth understanding. Every student will walk away knowing something new and useful.
Please note that this class is an introductory course and NOT for advanced reverse engineers or malware developers.
 
<H2 CLASS="MediumHeading">Target Audience</H2>
<UL>
<LI>
Detection and Response Staff
</LI>
<LI>
System Administrators
</LI>
<LI>
Junior Reverse Engineers
</LI>
<LI>
IT Security Consultants
</LI>
<LI>
Security Software Developers
</LI>
<LI>
Others with interests in:
</LI>
<UL>
<LI>
Basic Reverse Engineering
</LI>
<LI>
Malware and Malware Triage
</LI>
<LI>
Indicator of Compromise Development
</LI>
<LI>
Incident Response
</LI>
<LI>
Malware Analysis Tools and Products
</LI>
</UL>
</UL>
 
<H2 CLASS="MediumHeading">Course Outline</H2>
<UL>
<LI>
Malware Overview
</LI>
<LI>
Tools, Books, and Information Sources
</LI>
<LI>
File Formats
</LI>
<LI>
Dynamic Analysis
</LI>
<LI>
Static Analysis
</LI>
<LI>
Instrumentation
</LI>
<LI>
Anti-Virus Evasion
</LI>
<LI>
Case Studies and Example Samples
</LI>
<LI>
Defeating Anti-Analysis
</LI>
</UL>
 
<H2 CLASS="MediumHeading">Course Instructor Bio</H2>
This course is taught by a highly experienced member of Attack Research staff. Instructors have over 10 years of experience implementing, supporting, securing, and compromising large and complex multi-platform environments. Instructors are currently engaged in senior-level penetration testing of highly secured UNIX and Windows networks and frequently research, develop, and deploy custom tools and techniques during engagements.
Introduction to Malware Reverse Engineering instructors also bring a wealth of knowledge gained from performing incident response on compromised systems in the field including analysis of attacker tools and techniques. Many of the topics covered in the course are taken directly from instructors' case studies and represent real-world events. 
<H2 CLASS="MediumHeading">Student Requirements</H2>
Students must bring their own machines capable of running VMware.  Students are provided with a VMware Virtual Machine with all the tools and exercise files necessary for this course.
Students must have:
<UL>
<LI>
A concept of computer processor architecture.
</LI>
<LI>
An understanding of network and communication protocols.
</LI>
<LI>
An understanding of software process flow and some coding practices.
</LI>
<LI>
Familiarity with Windows at the GUI and command line.
</LI>
</UL>
 
<H2 CLASS="MediumHeading">Course Background</H2>
Introduction to Malware Reverse Engineering is a class that was built from our Rapid Reverse Engineering course, which has been taught at BlackHat and has been well received. The content was reviewed and tailored for individual customer training to aid in their reverse engineering program. It was then expanded to fit multiple clients and has been presented at many customer sites with great reviews, prompting Attack Research to offer the class publicly.
 
<H2 CLASS="MediumHeading">Students Provided With</H2>
Students leave the class with full documentation and the entire custom and non-custom toolsets, as well as the custom tools that they design and build in the class. Students walk away from AR training sessions not only with the usual training materials, but with a wealth of knowledge for both attacking and defending networks.
AR employs a very hands-on approach to teaching by having the students spend approximately 50% of class time performing practical exercises in a lab environment designed to simulate real-world enterprise networks. This type of class structure has been a proven success in retention of skills learned as well as student engagement.

Attack Research

Our {communityGuidelinesLink} describe the sort of content we prohibit on Eventbrite. If you suspect an event may be in violation, you can report it to us so we can investigate.

To report other categories of prohibited or illegal content, submit {link}

Introduction to Malware Reverse Engineering

More events from Attack Research, LLC

Discover more events from Attack Research, LLC, from Science & Tech to other experiences you might love.

Still looking for the right event?

Explore all events in Los Alamos and filter by date, category, and more to find the perfect fit.

Introduction to Malware Reverse Engineering

More events from Attack Research, LLC

Discover more events from Attack Research, LLC, from Science & Tech to other experiences you might love.

More Science & Tech events

Browse more Science & Tech events with different dates, prices, and formats to find your next great experience.

Still looking for the right event?

Explore all events in Los Alamos and filter by date, category, and more to find the perfect fit.