The course contains a wide array of topics (in total 5+ hours of content), from recognizing Encryption Algorithms in Malware to Tips and Tricks I personally use for unpacking different malware samples on a daily basis. A full list of modules can be seen in the contents below, or in the video. After completing the course, you should be able to grab a recent sample of malware, unpack it, and begin to analyze it. Obviously learning from a course is one thing, but to become an expert in this field takes a lot of dedication, not to mention practice. Over the course of your journey to become an expert, you'll learn many things, from how to create YARA rules, to writing Botnet trackers that many of you might have seen. Who knows, perhaps you will be the one to stop the next WannaCry.

After running sold-out trainings at multiple conferences over the last few years, we are back with an updated version of our course which now covers ARM64, mobile browser security, and detailed Mobile apps and operating system security. The class starts with a basic introduction to the ARM instruction set and calling conventions followed by some reverse engineering exercises. We then learn how to craft simple exploits for the ARM64 environment.

Next, we move to Mobile browser security, understand some of the browser mitigations followed by writing some simple exploits for the mobile browser. We then cover iOS and Android internals in further detail. We then discuss some of the exploitation techniques using real-world vulnerabilities (e.g., voucher_swap, checkm8, etc) followed by a walkthrough of how jailbreaks are written. We also discuss some of the common vulnerability types (Heap Overflows, Use-after-free, Uninitialized Stack variable, Race conditions).

The training then moves on to application security based on exploiting the Damn Vulnerable iOS app, Android-InsecureBankv2, and InsecurePass application written by the authors of this course in addition to a broad range of other real-world applications. We also cover a variety of mitigations deployed in real-world apps and discuss how to bypass them.

Slides, videos and detailed documentation on the labs will be provided to the students for practice after the class. Corellium access will be provided to students during the duration of the training course.

Это версия 2.0 нашего курса по реверс-инжинирингу. Мы добавили много интерактивной практики, когда студенты заранее получают стенды и разворачивают их у себя локально до начала занятия. И во время вебинара под руководством преподавателя выполняют практику у себя на виртуальных машинах.
Добавлена следующая практика:
• Практика по распаковке файлов
• Практический разбор PE формата (таблица импорта, таблица экспорта, таблица релокаций)
• Практический анализ шифровальщиков, банковских троянов, ботов

P.S. Если у вас не подходит к курсу пароль, то в его конце затесался лишний чар(ы)

Through OALABS we want to bring you the kind of reverse engineering tutorials that we wished we had when we were first learning to analyze malware. With Patreon we offer access to a wide variety of tutorials and workshops aimed at all skill levels. Our RE101 level tutorials cover important topics like how to setup a malware analysis lab, as well as reverse engineering fundaments like learning assembly, and how to use a debugger. Our RE201 level tutorials cover malware analysis specific topics like how to bypass anti-analysis checks in malware, and how to resolve dynamic imports. Our RE504 level tutorials cover advanced reverse engineering topics like how to bypass software protectors such as Themida, and VMProtect. Patreon also allows us to maintain a set of free publicly available malware analysis tutorials on YouTube as well as weekly malware analysis streams on Twitch.

These are collected private streams and vids from Patreon.