SecDSM Amateur Malware Analysis Presentation

At the September 2018 SecDSM meeting I gave a presentation titled “Amateur Malware Analysis.” Thank you to anyone who came and watched!

For anyone who didn’t make it or didn’t watch SecDSM’s live-stream the summary for my presentation was:

Are you interested in reversing but don’t know where to start? Think reversing is beyond your means? This talk will try to make the topic of reversing more accessible and will focus on amateur malware analysis, including setting up your environment, free tools, and some demos.

Here are the slides I used for my presentation in case anyone wanted to reference them: SecDSM Malware Presentation Slides (from Sept 20, 2018).

The slides contain URLs to the tools I talked about in the presentation. They still seemed to be safe the last time I checked them (although some AV engines disagree for some of the tools). That being said, as with all open source software and freeware that you download, you use them at your own risk. If you want to be really safe about it you could simply download them inside of the VM you plan to use for your malware analysis, and then only run them in your analysis VM. In fact, that is what I do. The same idea applies to any malware samples you download.

I really enjoy attending SecDSM. If you are interested you can check them out at https://secdsm.org/.

Change is… good?

So you may have noticed (although I highly doubt that seeing as no one looks at my website.. which is entirely my own fault for neglecting it…) that I’ve made some updates.

I’m migrating to a new server and doing some other fun things. After all, the reason I started this website was to use it as a grand experiment so I could try out new things and learn things through practical application.

I’m not going to keep all the same content I had at my old website, but I am going to go through and cherry pick blog posts to keep.

I’m probably going to focus most of my content on the core topics of: politics (I know, don’t judge…), being a geek, anything viking, or cybersecurity.*

*I reserve the right to blog anything else at random and you will just have to put up with it when it happens….