Op werkdagen voor 23:00 besteld, morgen in huis Gratis verzending vanaf €20
,

Malware Analysis and Detection Engineering

A Comprehensive Approach to Detect and Analyze Modern Malware

Paperback Engels 2020 9781484261927
Verkooppositie 6181
Verwachte levertijd ongeveer 8 werkdagen

Samenvatting

Discover how the internals of malware work and how you can analyze and detect it. You will learn not only how to analyze and reverse malware, but also how to classify and categorize it, giving you insight into the intent of the malware. Malware Analysis and Detection Engineering is a one-stop guide to malware analysis that simplifies the topic by teaching you undocumented tricks used by analysts in the industry. You will be able to extend your expertise to analyze and reverse the challenges that malicious software throws at you.
The book starts with an introduction to malware analysis and reverse engineering to provide insight on the different types of malware and also the terminology used in the anti-malware industry. You will know how to set up an isolated lab environment to safely execute and analyze malware. You will learn about malware packing, code injection, and process hollowing plus how to analyze, reverse, classify, and categorize malware using static and dynamic tools. You will be able to automate your malware analysis process by exploring detection tools to modify and trace malware programs, including sandboxes, IDS/IPS, anti-virus, and Windows binary instrumentation.
The book provides comprehensive content in combination with hands-on exercises to help you dig into the details of malware dissection, giving you the confidence to tackle malware that enters your environment.

What You Will Learn

-Analyze, dissect, reverse engineer, and classify malware
-Effectively handle malware with custom packers and compilers
-Unpack complex malware to locate vital malware components and decipher their intent
-Use various static and dynamic malware analysis tools
-Leverage the internals of various detection engineering tools to improve your workflow
-Write Snort rules and learn to use them with Suricata IDS


Who This Book Is For
Security professionals, malware analysts, SOC analysts, incident responders, detection engineers, reverse engineers, and network security engineers

"This book is a beast! If you're looking to master the ever-widening field of malware analysis, look no further. This is the definitive guide for you." Pedram Amini, CTO Inquest; Founder OpenRCE.org and ZeroDayInitiative

Specificaties

ISBN13:9781484261927
Taal:Engels
Bindwijze:paperback
Uitgever:Apress
Druk:1
Verschijningsdatum:23-9-2020
Hoofdrubriek:IT-management / ICT

Lezersrecensies

Wees de eerste die een lezersrecensie schrijft!

Geef uw waardering

Zeer goed Goed Voldoende Matig Slecht

Inhoudsopgave

Part 1: Introduction
1. Introduction
2. Malware Analysis Lab Setup
Part 2: OS and System Fundamentals
3. File & File Formats
4. Virtual Memory & Portable Executable(PE) File
5. Windows Internals
Part 3: Malware Components & Analysis
6. Malware Components & Distribution
7. Malware Packers
8. Persistence Mechanisms
9. Network Communication
10. Code Injection, Process Hollowing & API Hooking
11. Stealth and Rootkits
Part 3: Malware Analysis & Classification
12. Static Analysis
13. Dynamic Analysis
14. Memory Forensics With Volatility
15. Malware Payload Dissection & Classification
Part 4: Malware Reverse Engineering
16. Debuggers & Assembly Language
17. Debugging Tricks for Unpacking Malwares
18. Debugging Code Injection
19. Armoring & Evasion - The Anti Techniques
20. File-less, Macros & Other Malware Trends
Part 5: Detection Engineering
21. Dev Analysis Lab Setup
22. Anti-Virus Engines
23. IDS/IPS & Snort/Suricata Rule Writing
24. Malware Sandbox Internals
25. Binary Instrumentation for Reversing Automation

Managementboek Top 100

Rubrieken

Populaire producten

    Personen

      Trefwoorden

        Malware Analysis and Detection Engineering