Null offensive hacking hands-on training.

Proposed sessions for this event:

  • Malware Techniques Demystified by Adhokshaj Mishra
Note: The session details including schedule are available below.

Humla Title - Malware Techniques Demystified

Humla Champion - Adhokshaj Mishra

When - 28th September, 2014 (Sunday) | 10:00 AM IST - 06:00 PM IST

About Humla Champion

Adhokshaj Mishra is a hobbyist programmer with some interest in infosec domain. He mostly codes in C, C++, C#, VB .NET and assembly language. His primary domains of interest are cryptography, virology, cryptovirology, kleptography and mutation. He has worked as cyber crime investigator, and trainer of cyber crime investigation for Special Task Force, UP Police. He has also taught hacking (specially malware stuff) in various indian and overseas locations. He can be reached at Facebook (AdhokshajMishra), and Twitter (@adhokshajmishra). He blogs at http://adhokshajmishraonline.in.

Details

The workshop is basically about various tactics that are used by malware authors, and how to detect them. All the topics will contain a small proof of concept to reinforce the theory. The following topics will be covered:

1) Monitoring the keyboard and mouse
2) Intro to DLLs
3) DLL Injection Techniques
4) Native Code Injection
5) Anti-Debugging Techniques
6) Anti-Disassembly Techniques
7) Hooking function calls (pre-hooking, post hooking, replacement,
parameter poisoning etc)

Prerequisites

Knowledge: Fundamentals of C and C++, structures, classes, pointers, data structures, function pointers

Hardware: Any dual core machine with 4 GB RAM, minimum 20 GB free space.

Software: Windows 7 x64 (some techniques won't work on 32 bit OS), Visual Studio 2012, Debugging Tools for Windows, Driver Dev Kit for Windows 8, Windows 7 SDK

Note: If you are using Windows 8/8.1, make sure you install DDK and SDK for the same version. Windows 8 DDK is installed on Windows 7 as it integrates WinDBG with Visual Studio. If you are happy with WinDBG as standalone tool, you may use that.

If you prefer some other C/C++ toolchain, you may use that as long as you can tweak the instructions as per your installation.

Useful Links

Visual Studio: http://www.visualstudio.com (You may use Express edition which is available free of cost)

Debugging Tools for Windows: http://msdn.microsoft.com/en-in/library/windows/hardware/ff551063(v=vs.85).aspx

Driver Dev Kit: Same as above

Windows 7 SDK: Same as above

Date Sunday September 28 2014
Chapter Delhi NCR
Registrations 47
Max Registrations Unlimited
Event Type Invite Only
Start Time 10:00 AM
End Time 06:00 PM

Session Schedule

Name Speaker Start Time End Time Resources
Malware Techniques Demystified Adhokshaj Mishra 10:00 AM 06:00 PM

Venue


This is an invite only event. If you are selected you will receive further information via e-mail.