This course focus on the introduction of malware analysis and implementation.
In the begining of course, you will learn the usage of malware forenesic tools (e.g., Sysinternal Suite, Wireshark, IDA). You will understand how to analyze malware by pratice these tools to analyze real malware samples like Taiddor, PlugX, and Elise. In the second part of course, we will introduce CUCKOO sandbox which is an opensource malware analyzer, and you will be able to establish your automatic malware anlyzer environment to evulate malware.
- Introuction of malware behavior
- Static analysis
- Dynamic analysis
- Cuckoo sandbox
At least one year development experience of program
Basic knowledge of operation system like Process, Thread, Socket, File, and Memory
An latop able to run VMware
Charles is an experienced researcher of network security. He has worked for Trend Mirco. Charles has a lot experience of malware analysis and reverse engineering. Charles is also an speaker of HITCON. Charles is currently works for Team T5, focus APT research , Analysis of attack event and Tracing of Attacker force.