Null offensive hacking hands-on training.
Proposed sessions for this event:
- Malware Techniques Demystified by Adhokshaj Mishra
Humla Title - Malware Techniques Demystified
Humla Champion - Adhokshaj Mishra
When - 28th September, 2014 (Sunday) | 10:00 AM IST - 06:00 PM IST
About Humla Champion
Adhokshaj Mishra is a hobbyist programmer with some interest in infosec domain. He mostly codes in C, C++, C#, VB .NET and assembly language. His primary domains of interest are cryptography, virology, cryptovirology, kleptography and mutation. He has worked as cyber crime investigator, and trainer of cyber crime investigation for Special Task Force, UP Police. He has also taught hacking (specially malware stuff) in various indian and overseas locations. He can be reached at Facebook (AdhokshajMishra), and Twitter (@adhokshajmishra). He blogs at http://adhokshajmishraonline.in.
Details
The workshop is basically about various tactics that are used by malware authors, and how to detect them. All the topics will contain a small proof of concept to reinforce the theory. The following topics will be covered:
1) Monitoring the keyboard and mouse
2) Intro to DLLs
3) DLL Injection Techniques
4) Native Code Injection
5) Anti-Debugging Techniques
6) Anti-Disassembly Techniques
7) Hooking function calls (pre-hooking, post hooking, replacement,
parameter poisoning etc)
Prerequisites
Knowledge: Fundamentals of C and C++, structures, classes, pointers, data structures, function pointers
Hardware: Any dual core machine with 4 GB RAM, minimum 20 GB free space.
Software: Windows 7 x64 (some techniques won't work on 32 bit OS), Visual Studio 2012, Debugging Tools for Windows, Driver Dev Kit for Windows 8, Windows 7 SDK
Note: If you are using Windows 8/8.1, make sure you install DDK and SDK for the same version. Windows 8 DDK is installed on Windows 7 as it integrates WinDBG with Visual Studio. If you are happy with WinDBG as standalone tool, you may use that.
If you prefer some other C/C++ toolchain, you may use that as long as you can tweak the instructions as per your installation.
Useful Links
Visual Studio: http://www.visualstudio.com (You may use Express edition which is available free of cost)
Debugging Tools for Windows: http://msdn.microsoft.com/en-in/library/windows/hardware/ff551063(v=vs.85).aspx
Driver Dev Kit: Same as above
Windows 7 SDK: Same as above
Date | Sunday September 28 2014 |
---|---|
Chapter | Delhi NCR |
Registrations | 47 |
Max Registrations | Unlimited |
Event Type | Invite Only |
Start Time | 10:00 AM |
End Time | 06:00 PM |
Session Schedule
Name | Speaker | Start Time | End Time | Resources |
---|---|---|---|---|
Malware Techniques Demystified | Adhokshaj Mishra | 10:00 AM | 06:00 PM |