Developed for those looking to enhance their skills further as a Blue-Teamer, Zero2Automated: The Advanced Malware Analysis Course takes a highly practical approach when it comes to learning the advanced principles of Malware Reverse Engineering (with Zero2Hero).
Zero2Automated: What is it?
Initially created in response to the lack of affordable advanced malware reverse engineering training, the Zero2Automated course was developed by malware reverse engineers, for malware reverse engineers – with a large focus placed on practical analysis. This training walks you through a typical malware infection chain, covering different techniques in use by threat actors at each stage. From analysing exploit-embedded malicious documents, to reverse engineering a modular implant designed for the sole-purpose of harvesting user credentials, this training provides all the information you need to enhance and advance your malware analysis skillset.
While we developed the course to be extremely practical-heavy in terms of training material, we do realise that theory is vital in order to understand certain fundamentals; such as grasping the internals of the PROPagate injection technique, or how Equation Editor can be exploited by a malformed FONT type inside of a Word Document in order to gain shellcode execution. Therefore, theoretical papers are provided alongside the chapters that require a deeper dive, allowing you to constantly refer back to them whenever required.
Outside of the 20+ hours of on-demand video, and theoretical papers, you will also gain exclusive access to an e-book written by Jason Reaves (@sysopfb), that will walk you through several sophisticated malware samples, including GuLoader and Qakbot, and examine the different elements; from anti-analysis methods, string encryption functionality, unique C2 protocols, and more!
To wrap it all together, upon enrolment into the course you will receive access to the Zero2Automated private Slack workspace, allowing you to interact with the other students, ask for help on any issues that may come up, and track any future updates!
File Password is: infected
