Reverse Engineering of Malicious Software Training
This comprehensive training in malware reverse engineering will equip you with the skills needed to identify, analyze, and understand the workings of digital threats. You will learn to set up a secure investigation environment, use advanced debugging and behavioral analysis tools, and examine different infection vectors and anti-analysis mechanisms. The course also covers in-depth analysis of malicious documents such as PDF, Office, and APK files, guiding you step by step through the detection, extraction, and examination of malicious payloads. With a learning approach that combines theory and practical exercises, you will be able to deepen your cybersecurity knowledge and strengthen your investigative capabilities against modern malware.
Introduction
- Review of best practices in digital investigation
- Overview of different malware families
- Infection vectors
- Persistence and propagation mechanisms
Analysis Lab
- Virtual vs. physical labs
- Advantages of virtualization
- Virtualization solutions
- Network segregation
- Virtual and shared networks
- Virtual machine containment
- Precautions and best practices
Monitoring Machine Activity
- Network
- File system
- Registry
- Services
Introduction to Behavioral Analysis
- Diversity of systems
Setting Up a Behavioral Analysis Ecosystem
- Ecosystem configuration
- Definition of standard configurations
- Virtualization of guest machines
- VMware
- VirtualBox
- Installation of CAPEv2 and VirtualBox
Practical Application
- Submitting malware
- Analysis process
- Result analysis and reporting
Improvement via API
- Development opportunities and enhancements
Dynamic Malware Analysis
- Precautions
- Working within virtual machines
- Network configuration
- Analysis tools
- OllyDbg
- Immunity Debugger
- Debugging analysis
- Step into / Step over
- Software and hardware breakpoints
- Key system functions to monitor
- Pseudo-random domain name generation (C&C)
- Best analysis practices
- Anti-analysis mechanisms
- Debugger detection
- Detection of reverse engineering tools
- System exploit techniques
Analysis of Malicious Documents
- PDF Files
- Introduction to the PDF format
- Specific characteristics
- JavaScript integration and possibilities
- Examples of malicious PDFs
- Analysis tools: OLE Tools, hex editor
- Payload extraction and analysis
- Office Files (DOC/DOCX)
- Introduction to DOC/DOCX formats
- Specific characteristics
- Macros
- Linking and Embedding Objects (OLE)
- Analysis tools: OLE Tools, hex editor
- Malicious code extraction and analysis
- APK Files
- Introduction to APK format
- Analysis tools: jadx, Frida, Genymotion, MobSF
- Bypassing emulator protections
- Understanding application behavior
Autre(s) cours dans cette catégorie
Préalables :
Objectifs :
- Understand the mechanisms of infection, persistence, and propagation used by malicious software.
- Set up a secure environment for dynamic and static malware analysis.
- Use professional tools to monitor, debug, and analyze malware behavior.
- Identify and bypass anti-analysis techniques implemented by attackers.
- Analyze various malicious file formats (PDF, Office, APK) and extract payloads.
Classe virtuelle (en ligne) :
- 04/08/2025 au 06/08/2025
- 22/09/2025 au 25/09/2025
- 27/10/2025 au 30/10/2025
- 24/11/2025 au 27/11/2025
- 02/02/2026 au 05/02/2026
- 02/03/2026 au 05/03/2026
- 11/05/2026 au 14/05/2026
- 01/06/2026 au 04/06/2026
Montréal :
- 22/09/2025 au 25/09/2025
- 30/03/2026 au 02/04/2026
- 15/06/2026 au 18/06/2026
- 31/08/2026 au 03/09/2026
- 09/11/2026 au 12/11/2026
Québec :
- 05/01/2026 au 08/01/2026
- 20/07/2026 au 23/07/2026
- 08/02/2027 au 11/02/2027
Gatineau / Ottawa :
- 11/05/2026 au 14/05/2026
2722 $
per participant
Duration :4 day(s), is 28 hours.
Hours: 9 am-5pm, 2 coffee breaks.
Locations: Montreal, Gatineau / Ottawa, Quebec City.
Regular price: 3203 $
*The preferential rate applies if you register at least two participants in the same session.
Why Choose This Malware Reverse Engineering Training?
This unique training program provides you with concrete, in-demand expertise in the field of cybersecurity. It combines theory and hands-on practice to teach you how to identify, analyze, and understand malicious software in all its forms. Through real-world scenarios and the use of professional tools, you will learn to set up a secure investigation environment and master advanced debugging and behavioral analysis techniques. This comprehensive curriculum prepares you to anticipate and counter modern threats, strengthening your skills and boosting your employability in a rapidly growing sector. Whether you are an analyst, technician, or security engineer, this training is an essential asset for advancing in both offensive and defensive cybersecurity.
“ I want to thank you both for providing my resources some excellent training(Cobol) over the past 3 days. Mamadou, thank you for being so accommodating on such short notice and for sending your facilitator to Gatineau for this customised and personalised training course. We’ll look forward to continuing our partnership for future training needs. “
“J’ai grandement apprécié les méthodes d’enseignement du prof. Le fait que nous soyons un petit groupe a grandement facilité les apprentissages. Il s’adapte à son audience et les exercices sont formateurs. Je recommande fortement. “
“ Ce fut un plaisir de faire affaires avec Doussou Formation. Ce qui fait LA différence est le service personnalisé totalement à l'écoute des participants ainsi que l'adaptation aux besoins de formation. Flexibilité / Adaptabilité / Professionnalisme / Courtoisie. Merci!“