Static and dynamic analysis. Reverse engineering. Writing Decryptors.
Basic programming knowledge
A computer that can run a Windows virtual machine.
An interest in disassembling things and understanding how they work!
Patience and perseverance to “try harder”.
The aim of this course is to provide a practical approach to analyzing ransomware. Working with real world samples of increasing difficulty, we will:
Deep dive into identifying the encryption techniques,
Navigate through various evasion tricks used by malware writers,
Have fun discovering flaws in their logic or the implementation and
Work out automated ways to recover the affected files.
If you’re already familiar with the basics and want to dive straight into advanced samples, navigate anti-virtualization and anti-analysis tricks, and write C and Python decryptors for custom crypto algorithms, please check out our Advanced Reverse Engineering Ransomware course!