Setting Up a Malware Analysis Lab

Focused View

Aaron Rosenmund

1:25:21

247 View

Module 1 - Course Overview

1. Course Overview.mp4

01:31

Module 2 - Malware Analysis for Security Operations

1. Why Build Your Own Lab.mp4

01:43

2. Who Needs to Do This.mp4

01:11

3. What Skills Are Required.mp4

01:10

4. Creating a Safe Environment.mp4

03:50

5. Choosing a Hypervisor.mp4

02:31

6. Escaping VMs.mp4

02:10

7. Choosing Operating Systems.mp4

03:16

8. Evading Intelligent Malware.mp4

01:32

9. Choosing Hardware to Use.mp4

03:30

Module 3 - Creating a Sacrificial VM

1. Convincing Malware Hardware Is Real.mp4

02:47

2. Setting Up the Virtual Machine Networking.mp4

12:15

3. Configuring the Virtual Machine Hardware Settings.mp4

12:49

Module 4 - Passing Off Your Virtual Machine as the Real Deal

1. Adjusting to the Situation.mp4

03:08

2. Creating a Realistic Operating System.mp4

02:16

3. Knowing the Malware.mp4

02:35

4. Simulating User Activity.mp4

04:11

5. Working Around VMware Tools.mp4

03:42

Module 5 - Choosing Your Load Out

1. Deciding on Tools.mp4

03:14

2. Using Process Explorer.mp4

02:45

3. Using Process Monitor.mp4

02:23

4. Using Regshot and Autoruns.mp4

04:15

5. Using Fakenet.mp4

04:26

Module 6 - Summary and Recap

1. Pivoting to Alternative Tools.mp4

00:42

2. Preparing to Analyze Malware.mp4

01:29

Description

In this course, you’ll learn how to set up a malware analysis sandbox for discovering indicators of compromise specific to the variants of malware threatening your organization.

What You'll Learn?

In this course, Setting Up a Malware Analysis Lab, Aaron Rosenmund and Tyler Hudak discuss why you need to have your own malware analysis lab. There are variety of roles outside of reverse engineering that performs dynamic analysis of malware samples. Having the skills to identify the indicators of compromise make you invaluable to incident response and security operations teams. You will learn not only how to build a virtual machine, but also how to modify the operating system to properly trick the malware into believing it is in a safe place to detonate, what tools to use, and how to run them in your own malware analysis lab.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Cyber Security

Aaron Rosenmund

Instructor's Courses

Aaron M. Rosenmund is a cyber security operations subject matter expert, with a background in federal and business defensive and offensive cyber operations and system automation. Leveraging his administration and automation experience, Aaron actively contributes to multiple open and closed source security operation platform projects and continues to create tools and content to benefit the community. As an educator & cyber security researcher at Pluralsight, he is focused on advancing cyber security workforce and technologies for business and national enterprises alike. In support of the Air National Guard, he contributes those skills part time in various initiatives to defend the nation in cyberspace. Certifications: GIAC GCIA, GIAC GCED, CCNA Cyber Operations, Pentest+, CySa+, CASP www.AaronRosenmund.com @arosenmund "ironcat"

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.