Www.SecurityXploded.com. Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.

Slides:



Advertisements
Similar presentations
Why should my organisation move to Internet Explorer 9? An upgrade guide for IT professionals.
Advertisements

Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Assessing Vulnerabilities ISA 4220 Server Systems Security James A. Edge Jr., CISSP, CISM, CISA, CPTE, MCSE Sr. Security Analyst Cincinnati Bell Technology.
Defeating public exploit protections (EMET v5.2 and more)
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Introduction to Android Swapnil Pathak Advanced Malware Analysis Training Series.
Maintaining a Microsoft SQL Server 2008 Database SQLServer-Training.com.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Trying to like a boss… REVERSE ENGINEERING. WHAT EVEN IS… REVERSE ENGINEERING?? Reverse engineering is the process of disassembling and analyzing a particular.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Introduction Purpose This course describes the process of installing the KPIT GNU toolchain on your PC. Objective Learn how easy it is to get information.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
New to Edmodo? Create your free account here: Join my group: group code: 51e7p6.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Monnappa KA  Info Security Cisco  Member of SecurityXploded  Reverse Engineering, Malware Analysis, Memory Forensics 
INTRODUCTION TO VIRTUALIZATION KRISTEN WILLIAMS MOSES IKE.
EECS 354 Network Security Reverse Engineering. Introduction Preventing Reverse Engineering Reversing High Level Languages Reversing an ELF Executable.
Malware Analysis Jaimin Shah & Krunal Patel Vishal Patel & Shreyas Patel Georgia Institute of Technology School of Electrical and Computer Engineering.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
Chapter 0 Overview. Why you are here? Where will you go? What is this course for?
Amit Malik SecurityXploded Research Group FireEye Labs.
Microsoft ® Office ® 2010 Office 2010 Security: Protecting your files.
AdLib eDocument Solutions Scott Mackey AdLib eDocument eDocument Solutions.
Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions.
CS 492/592: Malware. Motivation Q: How can I tell if the software I'm running is malicious?
Stealing Passwords Remotely & Malware Analysis PacITPros May 8, 2012.
Homework tar file Download your course tarball from web page – Named using your PSU ID – Chapter labeled for each binary.
Software mechanism of Genesis --- a cheating software for Warcraft3 Yang Chen Wen Sun.
Friday, 23 August 2013 Session Work out Presented By: Abhijit Pal.
Strategic Security, Inc. © Exploit Development For Mere Mortals Part 1: Getting Started Presented By: Joe McCray
February 2016 Meeting. Web Defacement and Spear Phishing.
Software Reverse Engineering Binary analysis: concepts, methods and tools. Catalin Patulea Mar 5, 2008.
Powerpoint presentation on Drive-by download attack -By Yogita Goyal.
Reverse Engineering Contemporary Countermeasures By: Joshua Schwartz.
How to be a SharePoint Developer
CS 492/592: Malware
Malware malicious software which is specifically designed to disrupt, damage, or gain authorized access to a computer system Analysis detailed examination.
Topic 7 Malware Analysis Basics
Techniques, Tools, and Research Issues
Malware Reverse Engineering Process
Techniques, Tools, and Research Issues
Dynamic Analysis ddaa.
Techniques, Tools, and Research Issues
Microsoft Virtual Academy
Malware Reverse Engineering Process
Microsoft Virtual Academy
Malware Incident Response  Dynamic Analysis - 2
Part 1: Basic Analysis Chapter 1: Basic Static Techniques
Private Cloud Deployment MCS service line Offering
Chapter 3. Basic Dynamic Analysis
Microsoft Virtual Academy
MAP & ACT Pre deployment planning for Windows 7 or Server 2008 R2
Private Cloud Deployment MCS service line Offering
Microsoft Connect /17/2019 9:55 PM
Software Training Program for Dot Net. Software is the main source of income for most of the people in the present scenario. People opting computer based.
Introduction to Windbg
Talking Malware Analysis with MITRE
Agenda for Unit 1: Introduction of Computers and Games Graphics
Hello World Program In Visual Studio and Debugging
C# and ASP.NET Programming
Microsoft Virtual Academy
Presentation transcript:

Disclaimer The Content, Demonstration, Source Code and Programs presented here is "AS IS" without any warranty or conditions of any kind. Also the views/ideas/knowledge expressed here are solely of the trainer’s only and nothing to do with the company or the organization in which the trainer is currently working. However in no circumstances neither the trainer nor SecurityXploded is responsible for any damage or loss caused due to use or misuse of the information presented here.

Acknowledgement  Special thanks to null & Garage4Hackers community for their extended support and cooperation.  Thanks to all the trainers who have devoted their precious time and countless hours to make it happen.

Reversing & Malware Analysis Training This presentation is part of our Reverse Engineering & Malware Analysis Training program. Currently it is delivered only during our local meet for FREE of cost. For complete details of this course, visit our Security Training page.Security Training page

Who am I #1 Amit Malik (sometimes DouBle_Zer0,DZZ)  Member SecurityXploded & Garage4Hackers  Security Researcher  RE, Exploit Analysis/Development, Malware Analysis 

Who am I #2 Swapnil Pathak  Member SecurityXploded  Security Researcher  RE, Malware Analysis, Network Security 

Introduction  This Guide is specific to our course  Although it will cover most of the tools and techniques for an analysis environment  Our main focus is on the famous tools

Virtualization  Run multiple OS on the single hardware at the same time.  Advanced functionalities like Snapshot, Revert Back, pause etc.  Automation  Controlled environment

VirtualizationTools Virtualization Tools  VmWare (Commercial)  VirtualBox (Open Source – free)  Images – XpSp2, XpSp3

VmWareImage VmWare Image

VirtualBox Image

Tools Development  Compiler/IDE Dev C++ (Free) - preferred Microsoft Visual C++ (Commercial)  Assemblers MASM (Free) -preferred NASM (Free) Winasm (IDE) (Free)  Interpreters Python (Free)

Tools Reverse Engg Tools Reverse Engg.  Disassembler: IDA Pro (Download free version)  Debuggers Ollydbg Immunity Debugger Windbg Pydbg (optional)

Tools Reverse Engg. Cont.  PE file Format PEview, PEbrowse, LordPE, ImpRec, Peid, ExeScan  Process Related ProcMon, Process explorer  Network Related Wireshark, TcpDump, Tshark, TCPView  File, Registry Related Regshot, filemon, InstallwatchPro, CaptureBat

Tools Reverse Engg. Cont Tools Reverse Engg. Cont.  Misc. CFFExplorer, Notepad++, Dependency Walker, Sysinternal tools  If something additional is required then we will cover that in the respective lecture

Reference  Complete Reference Guide for Reversing & Malware Analysis Training Complete Reference Guide for Reversing & Malware Analysis Training

Thank You !

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.