Items related to Evasive Malware: Understanding Deceptive and Self-Defending...
Evasive Malware: Understanding Deceptive and Self-Defending Threats: A Field Guide to Detecting, Analyzing, and Defeating Advanced Threats - Softcover
Synopsis
Get up to speed on state-of-the-art malware with this first-ever guide to analysing malicious Windows software designed to actively avoid detection and forensic tools.
We’re all aware of Stuxnet, ShadowHammer, Sunburst, and similar attacks that use evasion to remain hidden while defending themselves from detection and analysis. Because advanced threats like these can adapt and, in some cases, self-destruct to evade detection, even the most seasoned investigators can use a little help with analysis now and then. Evasive Malware will introduce you to the evasion techniques used by today’s malicious software and show you how to defeat them.
Following a crash course on using static and dynamic code analysis to uncover malware’s true intentions, you’ll learn how malware weaponizes context awareness to detect and skirt virtual machines and sandboxes, plus the various tricks it uses to thwart analysis tools. You’ll explore the world of anti-reversing, from anti-disassembly methods and debugging interference to covert code execution and misdirection tactics. You’ll also delve into defense evasion, from process injection and rootkits to fileless malware. Finally, you’ll dissect encoding, encryption, and the complexities of malware obfuscators and packers to uncover the evil within.
You’ll learn how malware:
- Abuses legitimate components of Windows, like the Windows API and LOLBins, to run undetected
- Uses environmental quirks and context awareness, like CPU timing and hypervisor enumeration, to detect attempts at analysis
- Bypasses network and endpoint defenses using passive circumvention techniques, like obfuscation and mutation, and active techniques, like unhooking and tampering
- Detects debuggers and circumvents dynamic and static code analysis
You’ll also find tips for building a malware analysis lab and tuning it to better counter anti-analysis techniques in malware. Whether you’re a frontline defender, a forensic analyst, a detection engineer, or a researcher, Evasive Malware will arm you with the knowledge and skills you need to outmaneuver the stealthiest of today’s cyber adversaries.
"synopsis" may belong to another edition of this title.
About the Author
Kyle Cucci leads the threat analysis and forensics team at a large global financial institution, where he focuses on investigating and hunting the latest cybercrime and malware threats. He has over 15 years of experience in IT, serving various roles in malware research, threat intelligence, incident response, penetration testing, automotive security, and network administration. Kyle takes every opportunity to speak at security conferences and meet-up groups and has led international workshops in malware analysis, penetration testing, and security engineering. When not researching the latest threats, Kyle can be spotted in the wild spending time with his wife and sons or enjoying a good craft beer.
"About this title" may belong to another edition of this title.
Search results for Evasive Malware: Understanding Deceptive and Self-Defending...
Seller Image
Evasive Malware : Understanding Deceptive and Self-defending Threats
Seller: GreatBookPricesUK, Woodford Green, United Kingdom
Seller rating 5 out of 5 stars
Condition: As New. Unread book in perfect condition. Seller Inventory # 45806572
Quantity: 3 available
Stock Image
Evasive Malware: A Field Guide to Detecting, Analyzing, and Defeating Advanced Threats
Published by
No Starch Press (edition ), 2024
ISBN 10: 1718503261
ISBN 13: 9781718503267
Used
Paperback
Seller: BooksRun, Philadelphia, PA, U.S.A.
Seller rating 5 out of 5 stars
Paperback. Condition: As New. Ship within 24hrs. Satisfaction 100% guaranteed. APO/FPO addresses supported. Seller Inventory # 1718503261-10-1
Quantity: 6 available
Seller Image
Evasive Malware : Understanding Deceptive and Self-defending Threats
Seller: GreatBookPricesUK, Woodford Green, United Kingdom
Seller rating 5 out of 5 stars
Condition: New. Seller Inventory # 45806572-n
Quantity: 3 available
Stock Image
Evasive Malware: Understanding Deceptive and Self-Defending Threats
Published by
No Starch Press,US, 2024
ISBN 10: 1718503261
ISBN 13: 9781718503267
New
Paperback / softback
Seller: THE SAINT BOOKSTORE, Southport, United Kingdom
Seller rating 5 out of 5 stars
Paperback / softback. Condition: New. New copy - Usually dispatched within 4 working days. 526. Seller Inventory # B9781718503267
Quantity: 4 available
Stock Image
Evasive Malware
Seller: PBShop.store UK, Fairford, GLOS, United Kingdom
Seller rating 5 out of 5 stars
PAP. Condition: New. New Book. Shipped from UK. Established seller since 2000. Seller Inventory # EB-9781718503267
Quantity: 5 available
Stock Image
EVASIVE MALWARE
Seller: Speedyhen, London, United Kingdom
Seller rating 5 out of 5 stars
Condition: NEW. Seller Inventory # NW9781718503267
Quantity: 2 available
Seller Image
Evasive Malware
Seller: Rarewaves.com UK, London, United Kingdom
Seller rating 4 out of 5 stars
Paperback. Condition: New. Dive into the fascinating and terrifying world of evasive malware - malicious software designed to avoid detection. The first of its kind, this thorough introduction is full of practical information, real-world examples, and cutting-edge techniques for discovering, reverse-engineering, and analysing state-of-the-art malware. Beginning with foundational knowledge about malware analysis in the context of the Windows OS, you'll learn about the evasive manoeuvres that malware programs use to determine whether they're being analysed and the tricks they employ to avoid detection. You'll explore the ways malware circumvents security controls, such as network or endpoint defence bypasses, anti-forensics techniques, and malware that deploys data and code obfuscation. At the end of the book, you'll build your very own anti-evasion analysis lab. You'll learn: Modern evasive malware threats, anti-analysis techniques used in malware, how malware bypasses and circumvents security controls, how malware uses victim targeting and profiling techniques, how malware uses anti-forensics and file-less techniques, how to perform malware analysis and reverse engineering on evasive programs. Seller Inventory # LU-9781718503267
Quantity: Over 20 available
Stock Image
Evasive Malware
Seller: PBShop.store US, Wood Dale, IL, U.S.A.
Seller rating 5 out of 5 stars
PAP. Condition: New. New Book. Shipped from UK. Established seller since 2000. Seller Inventory # WB-9781718503267
Quantity: 7 available
Seller Image
Evasive Malware
Seller: Rarewaves USA United, OSWEGO, IL, U.S.A.
Seller rating 4 out of 5 stars
Paperback. Condition: New. Dive into the fascinating and terrifying world of evasive malware - malicious software designed to avoid detection. The first of its kind, this thorough introduction is full of practical information, real-world examples, and cutting-edge techniques for discovering, reverse-engineering, and analysing state-of-the-art malware. Beginning with foundational knowledge about malware analysis in the context of the Windows OS, you'll learn about the evasive manoeuvres that malware programs use to determine whether they're being analysed and the tricks they employ to avoid detection. You'll explore the ways malware circumvents security controls, such as network or endpoint defence bypasses, anti-forensics techniques, and malware that deploys data and code obfuscation. At the end of the book, you'll build your very own anti-evasion analysis lab. You'll learn: Modern evasive malware threats, anti-analysis techniques used in malware, how malware bypasses and circumvents security controls, how malware uses victim targeting and profiling techniques, how malware uses anti-forensics and file-less techniques, how to perform malware analysis and reverse engineering on evasive programs. Seller Inventory # LU-9781718503267
Quantity: Over 20 available
Stock Image
Evasive Malware
Seller: Books Puddle, New York, NY, U.S.A.
Seller rating 4 out of 5 stars
Condition: New. Seller Inventory # 26396352193
Quantity: 3 available