Description

Payment Methods

1. Credit Card: Click the Buy $9.00 button above

2. Paypal: Click this link


Many malware analysts perform reverse engineering on malware without knowing the why’s. They only know the how’s. To fill that knowledge gap, I have created this course.


You will learn first-hand from a Malware Developers’ perspective what windows API functions are commonly used in malware and finally understand how to trace them when reversing malware.


Learning Methodology:


Build programs that simulate Windows Trojans and Reverse Engineer them.

This will make you a better Reverse Engineer and Malware Analyst and also Penetration Tester.

The best way to understand malware is to be a Malware Developer.


Features:

Every topic will contain two parts: programming and reversing.

In the programming parts we will be writing programs that simulate trojan behavior by using API functions typically found in malware.

Then, in the reversing part, we take the programs that we wrote and perform reverse engineering on it

In this way, you will, for the first time, really understand why malware analyst do what they do when reversing a piece of malware


What you will learn:

  • How to compile and build executables and dynamic link libraries (DLL)
  • Windows API used in Malware
  • Creating shellcode using Metasploit on Kali Linux
  • Hiding shellcode payload in executable files
  • How to analyze and inspect memory of a running malware
  • Injecting Shellcode into running processes
  • Creating Remote Threads
  • Encryption of Payloads and Function Call String Parameters
  • Obfuscation of Function Calls
  • Malware Stealth Strategies
  • Encoding of Payloads
  • Trojan Development Life Cycle
  • How Anti Virus works under the hood
  • Using Yara to study malware signatures
  • Anti Virus Evasion Techniques
  • Dynamic Runtime API Loading
  • and more


We will be using free tools in this course, including Oracle Virtual Box and Flare-VM and the Community Edition of Microsoft Visual Studio 2019 C++. We will also install Kali Linux in the Virtual Box for learning how to use Metasploit to generate windows shellcode. Everything is highly practical. No boring theory or lectures. More like walk-throughs which you can replicate and follow along.


By the end of this course, you will have the basic skills to better understand how Malware works from the programmers’ point of view. This knowledge and skills are suitable for those aspiring to be Red Teamers.


Also, having practical knowledge of malware development will give you a better understanding of how to reverse engineer malware. For example, when reversing and analyzing a trojan, we usually put breakpoints of dangerous API functions calls – but don’t know why we do it. Now, in this course, I will show you the reasons for it. By the end of this course, you would have gained a solid foundation for understanding why and how malware reverse engineering works.


Suitable for:

  1. Reverse Engineering and Malware Analysis Students
  2. Programmers who want to know how Malware is created
  3. Students planning on entering Malware Analysis and Reverse Engineering, or Penetration Testers as a Career Path
  4. Penetration Testers and Ethical Hackers


Prerequisite:

  1. Windows PC
  2. Basic C Language
  3. Basic Linux commands


Who this course is for:

  1. Reverse Engineering and Malware Analysis Students
  2. Programmers who want to know how Malware is created
  3. Students planning on entering Malware Analysis and Reverse Engineering or Penetration Testers as a Career Path
  4. Penetration Testers and Ethical Hackers

Course curriculum

    1. Introduction to the course

      FREE PREVIEW
    2. How To Get Help

    1. Please use Windows 10 or 11

    2. Installing a virtual machine

    3. Configuring the virtual machine

    4. Installing FlareVM

    5. Installing Microsoft Visual Studio 2019

    6. Installing Kali Linux (for generating shellcode)

    7. Creating a shared folder on kali

    1. Building EXE, DLL and examining the PE file structure

      FREE PREVIEW
    1. Intro to embedding shellcode payloads

    2. Embedding shellcode payloads in text section

    3. Embedding shellcode payload in data section

    1. Generating shellcode using Metasploit in Kali Linux

      FREE PREVIEW
    1. Intro to embedding shellcode in RSRC section

      FREE PREVIEW
    2. Compiling shellcode in resource section and xdbg analysis

About this course

  • $9.00
  • 60 lessons
  • 8.5 hours of video content

Instructor

Senior Lecturer Paul Chin

Retired college lecturer (PhD in Computer Science) with more than 25 years experience in teaching computing and IT.

Learn how malware is developed today