Advanced Malware Traffic Analysis: Adversarial Thinking
Dec
3
to Dec 4

Advanced Malware Traffic Analysis: Adversarial Thinking

  • ExCel London, One Western Gateway Royal Victoria Dock London E16 1XL (map)
  • Google Calendar ICS

This intensive hands-on training gives you the most important thing when it comes to malware traffic analysis: the experience and knowledge of understanding malware behaviours on the network. Heavily hands-on, this training will give you the experience and methodology to recognise malicious connections, how to distinguish normal from malicious behaviours, how to recognise anomalous patterns, and how to deal with large amounts of traffic. 

The most important lesson of the training is not about how to use the tools. The goal is to transmit the experience of recognising the malicious actions of malware in the network. Specifically how malware hides, how to recognise the encryptions, how to analyse the web patterns and how to discard false connections. You will execute your own malware and learn to think like the adversary. The participants should leave with the knowledge to do a good analysis of network traffic to recognise malicious behaviours.

Read more here: Advanced Malware Traffic Analysis: Adversarial Thinking

View Event →

GETTING YOUR HANDS DIRTY: FROM PACKETS TO MALWARE BEHAVIOURS
Oct
12
to Oct 13

GETTING YOUR HANDS DIRTY: FROM PACKETS TO MALWARE BEHAVIOURS

Nowadays there are a lot of tools to analyse traffic, but the most important thing to have is the experience and knowledge of a malware analyst. The goal of the workshop is to give a hands-on experience on analysing the behavior of malware and botnet traffic in the network by studying their web patterns and their traffic behavior. The workshop will use both pcap files of real malware captures and real normal captures. Participants will learn a proven approach on how to do their traffic analysis, how to recognise malicious connections, how to separate normal behaviours from malicious behaviours, how to recognise anomalous patterns and how to deal with large amounts of traffic. Analysing only malware traffic may not be so complicated for some people, but accurately separating it from normal traffic is harder.

Read more here: https://www.hacktivity.com/training-portfolio

View Event →
ADVANCED MALWARE ATTACKS IN YOUR NETWORK. LEARNING THE DARK PATH OF BEHAVIORAL PROFILING DETECTION
Sep
24
to Sep 25

ADVANCED MALWARE ATTACKS IN YOUR NETWORK. LEARNING THE DARK PATH OF BEHAVIORAL PROFILING DETECTION

El problema más grande que tenemos a la hora de analizar ataques en la red es la sobrecarga de información. Tenemos sensores, visibilidad, detección básica y logs. Pero carecemos de la experiencia avanzada para independizarnos de las herramientas e identificar rápidamente ataques, infecciones, malware y servers comprometidos. Este curso no es sobre herramientas, es sobre metodologías y conocimiento para separar el tráfico normal de los ataques e infecciones. Las herramientas complementan pero no toman decisiones. Este curso es sobre la toma de decisiones en análisis avanzados de ataques en la red. Es sobre aprender el análisis de los comportamientos. Es sobre que mirar, cómo mirar, cómo comparar, cómo verificar, cómo descartar y cómo automatizar. El objetivo de este curso intensivo estilo hands-on es transmitir a los participantes la experiencia y el conocimiento de un analista avanzado de malware y ataques. El training usa capturas reales de tráfico de malware y capturas reales de tráfico normal. Los participantes aprenderán cómo encarar su análisis de tráfico, como reconocer conexiones maliciosas, como separar comportamientos normales de comportamientos maliciosos, como reconocer patrones anómalos y que hacer cuando las capturas de tráfico son demasiado grandes para manipular. Analizar trafico de red y poder separar lo normal del malware es una de las habilidades más importantes para proteger tu organización.

Read more here: https://www.ekoparty.org/advanced-malware-attacks-in-your-network.php

 

View Event →