Learn Malware Analysis - Advanced Malware Analyst Bundle
The modern malware uses Advanced techniques such as encrypted communication channels, kernel-level rootkits, and sophisticated evasion capabilities to get past a network’s defenses. We will teach you mitigation and countermeasures that may prevent an attacker from gaining a foothold into an organization.
In today’s cybersecurity landscape, it isn't possible to prevent every attack. Today’s attackers have significant funding, are patient, sophisticated, and target vulnerabilities in people and processes as well as technologies. With organizations increasingly relying on digitized information and sharing vast amounts of data across the globe, they have become easier targets for many different forms of attack.
As a result, every company’s day-to-day operations, data and intellectual property are seriously at risk. In a corporate context, a cyber attack can not only damage your brand and reputation, but it can also result in the loss of competitive advantage, create legal/regulatory noncompliance and cause steep financial damage.
In this course, we’ll introduce you to the 8 phases of threat intelligence:
Hunting - The goal of hunting is to establish techniques to collect samples from different sources that help to start profiling malicious threat actors.
Features Extraction - The goal of Features Extraction is to identify unique Static features in the binaries that help to classify them into a specific malicious group.
Behavior Extraction - The goal of Behavior Extraction is to identify unique Dynamic features in the binaries that help to classify them into a specific malicious group.
Clustering and Correlation - The goal of Clustering and Correlation is to classify malware based on Features and Behavior extracted and correlate the information to understand the attack flow.
Threat Actor Attribution - The goal of Threat Actors is to locate the threat actors behind the malicious clusters identified.
Tracking - The goal of tracking is to anticipate new attacks and identify new variants proactively.
Taking Down - The goal of Taking down is to Dismantled Organized Crime Operations.
In this course, you learn about the persistent attacks against specific targets. Understanding these groups and their behavior is important when evaluating threats against any organization.
The modern malware uses Advanced techniques such as encrypted communication channels, kernel-level rootkits, and sophisticated evasion capabilities to get past a network’s defenses. More importantly, they often leverage zero-day vulnerabilities – flaws for which no patch is available yet and no signature has been written.
Modern malware is often Persistent and designed to stick around. It’s stealthy and carefully hides its communications. It lives in a victim’s network for as long as possible, often cleaning up after itself by deleting logs, using strong encryption, and only reporting back to its controller in small, obfuscated bursts of communication.
Many attacks are now blended combinations of different techniques. A common tactic for hackers is to initiate an APT with spear phishing. This involves sending a carefully crafted email that appears to be in the form of a known individual or business with a link to a malicious website or an infected download.
150 Lectures and 17 Hours
Full lifetime access
Access on mobile and TV
Certificate of Completion
120 students enrolled