Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software
- ISBN-10
- 1593272901
- ISBN-13
- 9781593272906
- Category
- Computers
- Pages
- 800
- Language
- English
- Published
- 2012-02-01
- Publisher
- No Starch Press
- Authors
- Michael Sikorski, Andrew Honig
Description
Malware analysis is big business, and attacks can cost a company dearly. When malware breaches your defenses, you need to act quickly to cure current infections and prevent future ones from occurring. For those who want to stay ahead of the latest malware, Practical Malware Analysis will teach you the tools and techniques used by professional analysts. With this book as your guide, you'll be able to safely analyze, debug, and disassemble any malicious software that comes your way. You'll learn how to: –Set up a safe virtual environment to analyze malware –Quickly extract network signatures and host-based indicators –Use key analysis tools like IDA Pro, OllyDbg, and WinDbg –Overcome malware tricks like obfuscation, anti-disassembly, anti-debugging, and anti-virtual machine techniques –Use your newfound knowledge of Windows internals for malware analysis –Develop a methodology for unpacking malware and get practical experience with five of the most popular packers –Analyze special cases of malware with shellcode, C++, and 64-bit code Hands-on labs throughout the book challenge you to practice and synthesize your skills as you dissect real malware samples, and pages of detailed dissections offer an over-the-shoulder look at how the pros do it. You'll learn how to crack open malware to see how it really works, determine what damage it has done, thoroughly clean your network, and ensure that the malware never comes back. Malware analysis is a cat-and-mouse game with rules that are constantly changing, so make sure you have the fundamentals. Whether you're tasked with securing one network or a thousand networks, or you're making a living as a malware analyst, you'll find what you need to succeed in Practical Malware Analysis.
Get the book
Other editions
-
- 2012-02-01
- 800 pages
- Ebook
- No Starch Press
Similar books
-
Learning Malware Analysis: Explore the concepts, tools, and techniques to analyze and investigate Windows malware
By Monnappa K AWhat you will learn Create a safe and isolated lab environment for malware analysis Extract the metadata associated with malware Determine malware's interaction with the system Perform code analysis using IDA Pro and x64dbg Reverse-engineer ...
-
Mastering Malware Analysis: The complete malware analyst's guide to combating malicious software, APT, cybercrime, and IoT attacks
By Alexey Kleymenov, Amr ThabetThis book will help you deal with modern cross-platform malware. Throughout the course of this book, you will explore real-world examples of static and dynamic malware analysis, unpacking and decrypting, and rootkit detection.
-
Malware Analysis Techniques: Tricks for the triage of adversarial software
By Dylan BarkerWith this book, you'll learn how to quickly triage, identify, attribute, and remediate threats using proven analysis techniques.
-
Practical Binary Analysis: Build Your Own Linux Tools for Binary Instrumentation, Analysis, and Disassembly
By Dennis AndriesseStop manually analyzing binary! Practical Binary Analysis is the first book of its kind to present advanced binary analysis topics, such as binary instrumentation, dynamic taint analysis, and symbolic execution, in an accessible way.
-
Malware Analyst's Cookbook and DVD: Tools and Techniques for Fighting Malicious Code
By Michael Ligh, Steven Adair, Blake HartsteinSecurity professionals will find plenty of solutions in this book to the problems posed by viruses, Trojan horses, worms, spyware, rootkits, adware, and other invasive software.
-
Windows Malware Analysis Essentials
By Victor MarakMaster the fundamentals of malware analysis for the Windows platform and enhance your anti-malware skill set About This Book Set the baseline towards performing malware analysis on the Windows platform and how to use the tools required to ...
-
Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation
By Bruce Dang, Alexandre Gazet, Elias BachaalanyWindows System Programming, by Johnson Hart (Addison-Wesley Professional, 2010), and Windows via C/C++, by Jeffrey Richter and Christophe Nasarre (Microsoft Press, 2007), are excellent references. For Chapter 4, “Debugging and ...
-
Malware Data Science: Attack Detection and Attribution
By Joshua Saxe, Hillary SandersMalware Data Science explains how to identify, analyze, and classify large-scale malware using machine learning and data visualization.
-
The Art of Memory Forensics: Detecting Malware and Threats in Windows, Linux, and Mac Memory
By Andrew Case, Michael Hale Ligh, Jamie Levy... [000000002f700000 - 000000002f713000] Loader Data [WRITTEN] [000000002f713000 - 000000002f800000] Conventional [WRITTEN] [000000002f800000 - 000000002fd3e000] Loader Data [WRITTEN] [000000002fd3e000 - 000000002fe00000] Conventional ...
-
The Ghidra Book: The Definitive Guide
By Chris Eagle, Kara NanceYou'll learn how to: Navigate a disassembly Use Ghidra's built-in decompiler to expedite analysis Analyze obfuscated binaries Extend Ghidra to recognize new data types Build new Ghidra analyzers and loaders Add support for new processors ...