back to workshop overview

Workshop

Advanced Malware Hunting and Prevention

Register

March 16th, 17th & 18th

3 days training by CQURE
This training will be given in ENGLISH

Normal price: CHF 3000.
Student price: CHF 2250.- (limited availability)

Workshop with certification (35 credit hours)

Description

Are you tired of constantly reacting to malware attacks? Take control with our Advanced Malware Hunting course! In this deep-dive training, you’ll learn the latest techniques and capabilities of malware, as well as practical methods for preventing, detecting, and responding to malicious code. Our expert instructor will guide you through real-world scenarios, showing you how to analyze malware, identify vulnerabilities, and build robust defenses that protect your organization’s infrastructure. By the end of this course, you’ll have a comprehensive understanding of malware and its behaviors, as well as a toolbox of proven techniques for securing your network, endpoints, and data. Whether you’re an IT professional, security analyst, or malware researcher, this course will give you the skills and knowledge you need to stay one step ahead of the cybercriminals.

About the trainer

Amr THABET

Amr Thabet is a malware researcher and incident handler with over 12 years of experience. He has worked with several Fortune 500 companies, including Symantec, Tenable, and others. He is the founder of MalTrak and the author of Mastering Malware Analysis, published by Packt Publishing. Amr is also an expert and trainer at CQURE, where he contributes to advanced cybersecurity education. He is a speaker and instructor at some of the top security conferences around the world, including DEFCON, Hack In Paris, and the VB Conference. His work on Stuxnet has been featured in the Christian Science Monitor. Amr’s mission is to help security professionals across the globe build their expertise in malware analysis, threat hunting, and red teaming – and, most importantly, to protect their organizations from targeted attacks, ransomware attacks, and APT attacks.

Follow the instructor

X | LinkedIn | Instagram

Follow CQURE

X|LinkedIn|Instagram 

Course outline

Course outline

Module 1

  • What is Malware
  • Malware History
  • Malware Goals
  • Types of Malware
  • Advanced Persistent Threats
  • Indicators of Compromise

Module 2

  • Introduction to Malware Analysis
  • Types of malware analysis
  • Goals of malware analysis
  • Impact analysis
  • Containment and mitigation
  • Incident prevention and response playbooks
  • Setting up sandbox environment
  • Cloud-based malware analysis

Module 3

  • Static Malware Analysis
  • Executable analysis
  • Extracting secrets
  • Determining if file is packed or obfuscated
  • Fingerprinting the malware
  • Pattern matching using YARA

Module 4

  • Behavioral Malware Analysis
  • Malware detonation
  • Sysinternals suite
  • Network communication analysis
  • Monitoring system events
  • Memory dump analysis
  • Simulating real environment

Module 5

  • Malicious non-exe files
  • Alternative binaries
  • PowerShell scripts
  • Office documents
  • JScript
  • HTML documents
  • Living off the land binaries

Module 6

  • Advanced Techniques used by Malware
  • Malware persistence methods
  • Malware stealth techniques
  • Covert channel communication
  • Domain Generator Algorithms
  • Anti-VM and Anti-debugging tricks

Module 7

  • Defending against Malware
  •  Windows security solutions
  • Anti-Virus software
  • EDR software
  • Principle of least privilege
  • Application Whitelisting
  • Virtualization
  • Network and domain segmentation

Course requirements

Workshop level

Intermediate / advanced

Who should attend

This course is ideal for individuals in a variety of professions who are looking to enhance their knowledge and skills in malware hunting, including: security architects, Active Directory administrators, security administrators, security auditors, and other people responsible for implementing secure identity. To get the most out of this training, it’s recommended that you have solid hands-on experience in administering Active Directory Domain Services (AD DS) and Windows infrastructure. This will ensure you’re able to follow along and fully engage with the course content.

Key takeways

  1. Identify and classify malware: You will become familiar with different types of malware, their behaviors, and how they spread. You will gain expertise in identifying malware samples and understand malware propagation mechanisms.
  2. Identify and remove malicious activities: You will learn how to detect and analyze malware behavior, and gain hands-on experience in removing them from systems. You will also learn techniques for preventing future attacks and protecting your organization’s assets.
  3. Implement effective prevention solutions: You will learn how to implement and manage different preventive measures such as whitelisting or virtualization. You will also learn how to deploy incident response plans and develop effective countermeasures against advanced threats. By implementing these solutions, you will be able to protect your organization’s assets and minimize the impact of future attacks.

Hardware materials

Attendees are required to bring their own notebooks with WiFi internet connectivity. Don’t worry about installing any additional software beforehand – all materials will be provided in digital form on the first day of training for your convenience.

CQURE Team will provide

  • Virtual kit of CQURE Tools
  • Lab Instructions
  • Workshop slides
  • Access to a virtual environment for 3 weeks.

Organized by

Technology partners

Partner events

Scroll to Top