Suweera De Souza Senior Security Researcher, CrowdStrike
Suweera is an enthusiast when it comes to reversing malware and enjoys diving as deep as the hex bytes allow her to. Currently she works as a Senior Security Researcher at CrowdStrike, where she continues to hack away at code.
Blackhoodie: Blackhoodie at NorthSec 2022 - Getting cosy with Malware Static Analysis - Day 2
This workshop is in partnership with the BlackHoodie organization and is intended to be presented by and for women. We hope that all attendees respect this requirement. For further information, the organization's mission is available here.
See day 1 description.
Blackhoodie: Blackhoodie at NorthSec 2022 - Getting cosy with Malware Static Analysis
This workshop is in partnership with the BlackHoodie organization and is intended to be presented by and for women. We hope that all attendees respect this requirement. For further information, the organization's mission is available here.
This training is free and for women only as per Blackhoodie standards. It will be held in two 2 hour sessions on consecutive days and has a cap of 10 participants. Registration: Reach out to outreach@nsec.io.
Following Blackhoodie's guidelines regarding COVID, we require proof of vaccination and attendees to wear masks during the workshop
Topics that will be covered: - Understanding the PE file format - Using disassemblers like Ghidra or IDA - Recognizing some common malware routines (tricks used to stay persistent, obfuscation, etc)
If time permits, there will be a chance to learn how to use scripts to augment and make the experience of static analysis easier.
Pre-requisites/assumed knowledge:
- Comfortable with x86 assembly language.
- Comfortable with some programming languages.
- Some knowledge of how a CPU works.
- Machine with VMs installed (instructions will be emailed before the workshop).
Discussion: Malware Block
This is a Q&A session. Moderators will take audience questions both remotely and on-site via sli.do.
Hosted panel discussion and Q&A.