We'll be meeting in May.
Not sure where yet, but it's very likely to be a conference room in Bushnell's Basin.
Topic: Basic Malware Analysis
Agenda:
Tools
- Virtual Machines
- VMWare | VPC | VirtualBox
- pros/cons to each
- Avoidance mechanisms used by malware authors
- Debuggers
- IDA | OllyDbg | Immunity Debugger | GDB
- Avoidance mechanisms used by malware authors
Basic HOWTO
- Javascript Downloaders
- BIND wildcard NS Host
- Netcat Listeners
- iDefense "sandbox"
*NOT* Being Covered (this time around):
- In depth binary Analysis using debuggers.
I'll follow this post up with a formal date/place once that's been determined.
Not sure where yet, but it's very likely to be a conference room in Bushnell's Basin.
Topic: Basic Malware Analysis
Agenda:
Tools
- Virtual Machines
- VMWare | VPC | VirtualBox
- pros/cons to each
- Avoidance mechanisms used by malware authors
- Debuggers
- IDA | OllyDbg | Immunity Debugger | GDB
- Avoidance mechanisms used by malware authors
Basic HOWTO
- Javascript Downloaders
- BIND wildcard NS Host
- Netcat Listeners
- iDefense "sandbox"
*NOT* Being Covered (this time around):
- In depth binary Analysis using debuggers.
I'll follow this post up with a formal date/place once that's been determined.