SSD-3201: Malware Analysis: Tools & Techniques

Description
The course equips students with the basic knowledge of malware analysis to reverse-engineer the malware using practical tools and techniques. The three phases of behavioral, code and memory analysis of malware will be taught. Students will learn how to explore and understand the key characteristics of malware and the techniques of reverse-engineering compiled Windows executables and browser-based malware. This course presents key tools and techniques for malware analysis and examines malicious programs. Code analysis focuses on the specimen’s code and makes use of a disassembler and a debugger tools such as IDA Pro and OllyDbg. Students will learn how to build a flexible laboratory to perform such analysis in a controlled manner. Lab: 5 hrs/week.