fbpx
Loading Events

« All Events

Malware Reverse Engineering Workshop – BSides Atlanta – Atlanta, GA

March 27 @ 8:00 am - 5:00 pm EDT

The workshop is to introduce a new group of IT and Security experts to the fascinating art of malware reverse engineering. We will cover the Portable Executable (PE) file format that is used by the Windows OS for all executable files, go through an assembly primer so that everyone is on the same page before we dive into both Static and Dynamic testing.

Session 1Session 2Session 3Session 4
Understanding to playing field
    • Overview of Windows architecture
    • Understanding the PE file format
    • Understanding
      • LAB: PE Exploring

Assembly Primer
      • Registers
      • Flags
      • Function preamble
      • Variables (FPO and referencing)
      • Calling conventions
      • Identifying branches
      • Identifying loops
        • LAB: Defuse the bomb

          LAB: Compare high level to assembly code

Static RE
        • Understanding Strings in the binary
        • Understanding Packers and encryption of malware
        • IDA Pro
          • LAB: Analyze Trojan horse

Dynamic RE
        • Understanding Debuggers
        • Understanding Process, Register, File and Network Monitors
        • Understanding how to capture memory
        • Responder Pro
          • LAB: Gaining and maintaining access using your Storm device

Michael Vein

Michael Vein
Michael Vien is a senior instructor for the Certified Ethical Hacker course by EC Council. He has over 24 years of experience in Cyber Security with a background in software development and system administration. Mr. Vien has developed and taught ethical hacking and malware classes for EC Council, SecureNinja, Security University, The Hacker Academy and Insyte. He has spent a considerable amount of time researching and developing viruses and Trojan horses to aid in his understanding of these types of threats, the result of which has made him a foremost expert in the field of malicious code.

Anyone who wants to understand more about malware including how to detect and/or respond to malware threats.

Incident responders, malware analysts, IDS admins, firewall admins, desktop admins, AV admins, and hackers.

Each BSides is a community-driven framework for building events for and by information security community members. The goal is to expand the spectrum of conversation beyond the traditional confines of space and time. It creates opportunities for individuals to both present and participate in an intimate atmosphere that encourages collaboration. It is an intense event with discussions, demos, and interaction from participants. It is where conversations for the next-big-thing are happening. To learn more CLICK HERE!

To register for this course, click Buy Now,
if you are interested but still have questions, click Contact Us.

Interested but still have questions?

Share this!
Facebooktwitterredditpinterestlinkedinmail

Details

Date:
March 27
Time:
8:00 am - 5:00 pm
Event Categories:
,

Venue

KSU Kennesaw Center
3391 Town Point Dr. Ste. 4320
Kennesaw, GA 30144 United States
+ Google Map