Mastering Malware Analysis: A malware analyst's practical guide to combating malicious software, APT, cybercrime, and IoT attacks, 2nd Edition 2nd edition
by Alexey Kleymenov，Amr Thabet(Author)
Publisher Finelybook 出版社: Packt Publishing; 2nd edition (September 30, 2022)
Language 语言: English
pages 页数: 572 pages
ISBN-10 书号: 1803240245
ISBN-13 书号: 9781803240244
Learn effective malware analysis tactics to prevent your systems from getting infected
Investigate cyberattacks and prevent malware-related incidents from occurring in the future
Learn core concepts of static and dynamic malware analysis, memory forensics, decryption, and much more
Get practical guidance in developing efficient solutions to handle malware incidents
New and developing technologies inevitably bring new types of malware with them, creating a huge demand for IT professionals that can keep malware at bay. With the help of this updated second edition of Mastering Malware Analysis, you'll be able to add valuable reverse-engineering skills to your CV and learn how to protect organizations in the most efficient way.
This book will familiarize you with multiple universal patterns behind different malicious software types and teach you how to analyze them using a variety of approaches.
You'll learn how to examine malware code and determine the damage it can possibly cause to systems, along with ensuring that the right prevention or remediation steps are followed. As you cover all aspects of malware analysis for Windows, Linux, macOS, and mobile platforms in detail, you'll also get to grips with obfuscation, anti-debugging, and other advanced anti-reverse-engineering techniques. The skills you acquire in this cybersecurity book will help you deal with all types of modern malware, strengthen your defenses, and prevent or promptly mitigate breaches regardless of the platforms involved.
By the end of this book, you will have learned how to efficiently analyze samples, investigate suspicious activity, and build innovative solutions to handle malware incidents.
What you will learn
Explore assembly languages to strengthen your reverse-engineering skills
Master various file formats and relevant APIs used by attackers
Discover attack vectors and start handling IT, OT, and IoT malware
Understand how to analyze samples for x86 and various RISC architectures
Perform static and dynamic analysis of files of various types
Get to grips with handling sophisticated malware cases
Understand real advanced attacks, covering all their stages
Focus on how to bypass anti-reverse-engineering techniques
Who this book is for
If you are a malware researcher, forensic analyst, IT security administrator, or anyone looking to secure against malicious software or investigate malicious code, this book is for you. This new edition is suited to all levels of knowledge, including complete beginners. Any prior exposure to programming or cybersecurity will further help to speed up your learning process.
Table of contents
Cybercrime, APT Attacks, and Research Strategies
A Crash Course in Assembly and Programming Basics
Basic Static and Dynamic Analysis for x86/x64
Unpacking, Decryption, and Deobfuscation
Inspecting Process Injection and API Hooking
Bypassing Anti-Reverse Engineering Techniques
Understanding Kernel-Mode Rootkits
Handling Exploits and Shellcode
Reversing Bytecode Languages – .NET, Java, and More
Scripts and Macros – Reversing, Deobfuscation, and Debugging
Dissecting Linux and IoT Malware
Introduction to macOS and iOS Threats
Analyzing Android Malware Samples