Custom cover image
Malware analyst's cookbook and DVD : tools and techniques for fighting malicious code / Michael Hale Ligh, Steven Adair, Blake Hartstein, Matthew Richard
Contributor(s): Resource type: Ressourcentyp: Buch (Online)Book (Online)Language: English Publisher: Indianapolis : Wiley Publishing, Inc., [2011]Copyright date: © 2011Description: 1 Online-Ressource (xxvi, 716 Seiten)ISBN:- 9781118008294
- 9781118008300
- 9781118003367
- 1282849409
- 9781282849402
- 005.8 005.84
- 005.8
- QA76.9 .A25
- QA76.76.C68
Contents:
Summary: A computer forensics "how-to" for fighting malicious code and analyzing incidents With our ever-increasing reliance on computers comes an ever-growing risk of malware. Security professionals will find plenty of solutions in this book to the problems posed by viruses, Trojan horses, worms, spyware, rootkits, adware, and other invasive software. Written by well-known malware experts, this guide reveals solutions to numerous problems and includes a DVD of custom programs and tools that illustrate the concepts, enhancing your skills. Security professionals face a constant battle against malicious software; this practical manual will improve your analytical capabilities and provide dozens of valuable and innovative solutions Covers classifying malware, packing and unpacking, dynamic malware analysis, decoding and decrypting, rootkit detection, memory forensics, open source malware research, and much more Includes generous amounts of source code in C, Python, and Perl to extend your favorite tools or build new ones, and custom programs on the DVD to demonstrate the solutions Malware Analyst's Cookbook is indispensible to IT security administrators, incident responders, forensic analysts, and malware researchers.PPN: PPN: 723171009Package identifier: Produktsigel: ZDB-26-MYL | ZDB-30-PAD | ZDB-30-PQE
Malware Analyst's Cookbook and DVD; Contents; Introduction; On The Book's DVD; Chapter 1: Anonymizing Your Activities; Chapter 2: Honeypots; Chapter 3: Malware Classification; Chapter 4: Sandboxes and Multi-AV Scanners; Chapter 5: Researching Domains and IP Addresses; Chapter 6: Documents, Shellcode, and URLs; Chapter 7: Malware Labs; Chapter 8: Automation; Chapter 9: Dynamic Analysis; Chapter 10: Malware Forensics; Chapter 11: Debugging Malware; Chapter 12: De-obfuscation; Chapter 13: Working with DLLs; Chapter 14: Kernel Debugging; Chapter 15: Memory Forensics with Volatility
Chapter 16: Memory Forensics: Code Injection and ExtractionChapter 17: Memory Forensics: Rootkits; Chapter 18: Memory Forensics: Network and Registry; Index;
No physical items for this record