Price: $1,699.00

Length: 2 Days
Print Friendly, PDF & Email

Fundamentals of Malwares and Protection Against Malware Training

IT security professionals emphasize certain things that organizations and agencies can do to lessen the risk of malware attacks.

Recommendations include:

  • Backup your data – in this age of ransomware, if all else fails, at least you will have the security of knowing your sensitive data is safe.
  • Train your employees – help them recognized phishing attacks and the telltale signs of brand impersonation emails.
  • Have a risk management strategy – understand what systems and data must be protected.
  • Continuously improve your defense posture – as the evolution of malware suggests, organizations must be vigilant and continuously improve to keep pace with the growing threat.

Cybersecurity professionals also insist it’s imperative to recognize the symptoms associated with malware – especially new or evolved malware viruses.

Technically, a computer malware virus is a type of malicious code or program written to alter the way a computer operates and is designed to spread from one computer to another. A virus operates by inserting or attaching itself to a legitimate program or document that supports macros in order to execute its code.

In the process, a virus has the potential to cause unexpected or damaging effects, such as harming the system software by corrupting or destroying data.

Malware encompasses all types of malicious software, including viruses, and may have a variety of goals. A few of the common objectives of malware are:

  • Trick a victim into providing personal data for identity theft
  • Steal consumer credit card data or other financial data
  • Assume control of multiple computers to launch denial-of-service attacks against other networks
  • Infect computers and use them to mine bitcoin or other cryptocurrencies

Today’s malware viruses are extremely sophisticated, adaptable and very malicious. Cyber-attacks surged in 2021, inflicting global damages totaling $6 trillion.

If it was measured as a country, cybercrime would be the world’s third-largest economy after U.S. and China.

Worse, global cybercrime, headlined by malware attacks, is expected to grow 15%  per year over the next five years, reaching $10.5 trillion annually by 2025, up from $3 trillion USD in 2015.

As new malware is created, it is important for organizations to be vigilant. Corruption from malware strikes companies, agencies and individuals.

Experts say both education and a plan are crucial to prevent malware losses.

Tonex can help.

Fundamentals of Malwares and Protection Against Malware Training course By Tonex

By taking the fundamentals of malwares and protection against malware training, you will learn the definition of computer security and necessity of protection against malwares. Moreover, participants learn how risk of attacks in networks is evaluated and what are the steps to ensure the system security against malwares.

Learn about malicious software (malware), effect of malware on user’s device, and common types of malware in today’s network. This course gives you sufficient knowledge to classify the malwares based on the risk that they cause on system security.

Learn about Trojans and Worm as common malwares in cybersecurity. This course will address the latest recorded types of Trojan horses with examples and common worms in malicious software.

Learn how malwares, exploits and malicious code attacks can harm cybersecurity and what procedures should be done to secure the network in case these attacks happen to the system.

After introducing other types of malwares named exploits, this course helps you to understand the different algorithms to detect the malwares, understand the malware criminal activities and perform the anti-malware analysis. Upon the completion of the course, you will be introduced to the advanced malware detection algorithms too.

As the first step after identifying the malware is to prevent the risk caused by their activation, this training will teach you the fundamentals of malware incident prevention, threat mitigation, spyware removal techniques and firewall security actions.

If you are a professional who specialize in managing or designing security solutions and risk based management provider, you will benefit from the presentations, examples, case studies, discussions, and individual activities upon the completion of fundamentals of malwares and protection against malware training to help prepare yourself for your career.

Finally, the fundamentals of malwares and protection against malware training will help you to handle the malware in case the prevention algorithm could not mitigate the malware. In this case, malware incident response technique is the best option which will be discussed in detail in the course.

Audience

The Fundamentals of Malwares and Protection Against Malware training is a 2-day course designed for:

  • All individuals who need to understand the concept of malwares and malware protection schemes
  • IT professionals in the areas of incident response, forensic investigation, windows security and system administration
  • Cybersecurity professionals, network engineers, security analysts, policy analysts
  • Security operation personnel, network administrators, system integrators and security consultants
  • IT professionals interested in the field of malware-based attacks
  • Security traders who need to understand malware-based attacks
  • Investors and contractors who plan to make investments in security system industry
  • Technicians, operators, and maintenance personnel who are or will be working on cybersecurity projects
  • Managers, accountants, and executives in the cybersecurity industry

Training Objectives

Upon completion of the Fundamentals of Malwares and Protection Against Malware Training course, the attendees are able to:

  • Understand the foundation and history behind the computer security
  • Explain different types malwares and consequences of malwares to computer security
  • Understand the different classification of malwares in network security
  • Recognize the different types of Trojans and Worms as the most common types of malwares
  • Describe the exploits and their different types and consequences
  • Explain the malware detection algorithms and approaches
  • Understand the malware prevention studies
  • Describe the incident response methodologies in case of malware attacks

Training Outline

The fundamental of malwares and protection against malware training course consists of the following lessons, which can be revised and tailored to the client’s need:

Introduction to Computer Security

  • Definition of Computer security
  • Why computer security?
  • Privacy issues
  • Risk of attacks in network
  • Consequences of security violations
  • Computer security policies
  • Control laws in computer security
  • Legal status of privacy
  • Mobile code security
  • Firewalls and network security issues
  • System security
  • Electronic commerce
  • Authentication in computer security
  • Concept of cryptography

Introduction to Malwares

  • Definition of Malware
  • Malicious Software (Malware)
  • Malware effect to user’s device
  • Examples of Malwares
  • Computer virus
  • Boot sector virus
  • Excel micro virus
  • Word micro virus
  • Script viruses
  • Keyloggers
  • Password stealers
  • Backdoor Trojan
  • Crimeware
  • Spyware
  • Adware

Malware Classification

  • Classification based on least threat results
  • Classification based on great threat results
  • Exploits
  • Rootkits
  • Trojans
  • Backdoors
  • Viruses
  • Worms
  • Email Worms
  • Networms

Different Types of Trojans and Worms

  • Trojan Dropper
  • Trojan Downloader
  • Trojan PSV
  • Trojan Spy
  • Trojan DDOS
  • Trojan Ransom
  • Trojan Game Thief
  • Trojan IM
  • Trojan Banker
  • Trojan SMS
  • Trojan Proxy
  • Trojan Arcbomb
  • Trojan Clicker
  • P2P Worm
  • IRC Worm
  • IM Worm

Different Classification of Exploits

  • Categories of exploits
  • Exploits by type of vulnerability
  • Local or remote exploits
  • Results of exploits
  • Pivoting
  • Proxy pivoting
  • VPN pivoting
  • Techniques of gaining Foothold
  • Shell code
  • Integer overflow vulnerabilities
  • Stack-based buffer overflows
  • Stacks upon stacks
  • Crossing the line
  • Protecting against stack-based
  • Buffer overflows
  • Addendum; stack-based buffer
  • Overflow mitigation
  • Format string vulnerabilities
  • SQL injection
  • Protection against SQL injection
  • Malicious PDF files
  • Creating malicious PDF files
  • Reducing the risks of malicious files
  • Web exploit tools
  • Features of hiding
  • Commercial web exploit tool
  • Proliferation of web exploit tools
  • DOS conditions
  • Brute force and dictionary attacks
  • Misdirection method
  • Reconnaissance method
  • Disruption method
  • Cross site scripting (XSS)
  • WarXing
  • DNS amplification attacks
  • Protection over DNS amplification attacks

Malware and Exploit Detection

  • Detecting wide range of existing malicious programs
  • Detecting new modification of known malwares
  • Detecting packaged files
  • Antivirus programs
  • Effective computer protection policy
  • Data security
  • Digital identity security
  • Finances security
  • Frequently updated drivers for all malware types
  • Detecting malware creators
  • Vandals
  • Swindlers
  • Blackmailers
  • Malware criminals
  • Anti-malware technology
  • Security state assessment
  • Anti-Malware analysis
  • Extensive data analysis
  • Rigorous analysis
  • Integrated response
  • Advanced malware detection
  • Streamlined management
  • Challenges regarding anti-malware technologies

Malware Incident Prevention

  • Malware incident policies
  • Awareness
  • Vulnerability mitigation
  • Patch management
  • Least privilege
  • Host hardening measures
  • Threat mitigation
  • Antivirus software
  • Spyware detection and removal utilities
  • Intrusion prevention systems
  • Firewalls and routers
  • Application settings

Malware Incident Response

  • Preparation
  • Maintaining malware related skills
  • Facilitating communications and coordination
  • Acquiring tools and resources
  • Malware detection
  • Signs of malware incidents
  • Malware incident characteristic
  • Prioritizing incident response
  • Containment
  • Containment through user participation
  • Automated detection
  • Disabling connectivity
  • Containment recommendations
  • Identification of infected hosts
  • Eradication
  • Recovery
  • Future of malwares

Malware Static Analysis

  • Checking file signature
  • Malware strings
  • Import and exports
  • Encryption and packing
  • Tools: md5sum, strings, PEView, PEiD, Resource Hacker, Dependency Walker
  • Advanced static analysis

Malware Dynamic Analysis

  • Virtual malware analysis lab
  • Monitoring using process monitor
  • Analyzing the process using process explorer
  • Comparing registry snapshots with Regshot
  • Monitoring malware network traffic
  • Debugging

Hands-on and In-Class Activities

  • Labs
  • Workshops
  • Group Activities

Sample Workshops Labs for Malware Protection Training

  • Analyzing malicious Microsoft Office (Word, Excel, PowerPoint) documents
  • Examining static properties of suspicious programs
  • Performing behavioral analysis of malicious Windows executable
  • Analyzing malicious Adobe PDF documents
  • Bypassing anti-analysis defenses
  • Recognizing malware
  • Intercepting network connections in the malware lab
  • Interacting with malicious websites to examine their nature
  • JavaScript analysis complications
  • x86 Intel assembly language primer for malware analysts
  • Patterns of common malware characteristics at the Windows API level (DLL injection, function hooking, keylogging, communicating over HTTP, etc.)

 

Fundamentals Of Malwares And Protection Against Malware Training

Request More Information

Please enter contact information followed by your questions, comments and/or request(s):
  • Please complete the following form and a Tonex Training Specialist will contact you as soon as is possible.

    * Indicates required fields

  • This field is for validation purposes and should be left unchanged.

Request More Information

  • Please complete the following form and a Tonex Training Specialist will contact you as soon as is possible.

    * Indicates required fields

  • This field is for validation purposes and should be left unchanged.