Catalog Description
Learn how to analyze malware, including computer viruses, trojans, and rootkits, using disassemblers, debuggers, static and dynamic analysis, using IDA Pro, OllyDbg and other tools.
Advisory: CS 110A or equivalent familiarity with programming
Upon successful completion of this course, the student will be
able to:
- Describe types of malware, including rootkits, Trojans, and viruses.
- Perform basic static analysis with antivirus scanning and strings
- Perform basic dynamic analysis with a sandbox
- Perform advanced static analysis with IDA Pro
- Perform advanced dynamic analysis with a debugger
- Operate a kernel debugger
- Explain malware behavior, including launching, encoding, and network signatures
- Understand anti-reverse-engineering techniques that impede the use of disassemblers, debuggers, and virtual machines
- Recognize common packers and how to unpack them
Textbook
"Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software", by Michael Sikorski and Andrew Honig; ISBN-10: 1593272901
Buy from Amazon
|