Zero 2 Hero

“From Zero to Hero: Malware Reverse Engineering & Threat Intelligence” is a free, 12-week course by Vitali Kremez and Daniel Bunce (@0verfl0w_) sponsored by SentinelOne.

Register now to access Week 1 and get notified of each new weekly episode.

Chapter 4: Dissecting FIN6 “FrameworkPOS”: Point-of-Sale Malware Analysis & Internals

The Zero2Hero malware course continues with Vitali Kremez diving into the FIN6 “FrameworkPOS”, targeting payment card data from Point-of-Sale (POS) or eCommerce systems.

Read the Zero2Hero Course Posts

Posted on

FIN6 “FrameworkPOS”: Point-of-Sale Malware Analysis & Internals

The Zero2Hero malware course continues with Vitali Kremez diving into FIN6 “FrameworkPOS”, targeting payment card data from Point-of-Sale (POS) or eCommerce systems

READ MORE
Posted on

RIG Exploit Kit Chain Internals

The Zero2Hero malware course continues with Vitali Kremez explaining the RIG Exploit Kit and how it led to the Amadey Stealer and Clipboard Hijacker

READ MORE
Posted on

Gootkit Banking Trojan | Part 3: Retrieving the Final Payload

Gootkit’s final payload contains multiple Node.js scripts. Join Daniel Bunce as he reverse engineers the malware to take a deeper look at what it delivers.

READ MORE

Course Syllabus

  • Technical overview of injection techniques and persistence mechanisms
  • Discovering/recognizing privilege escalation in malware
  • Threat actors techniques to gain a foothold on networks
  • Deep dive into APTs (advanced persistent threats), eCrime
  • Info-stealers and Exploit Kit drive-bys seen in the wild
  • Analyzing shellcode usage in malware
  • Full analysis of malware techniques – stealth, persistence, algorithms, communication to a C2 server, and advanced capabilities

Powerful, Autonomous Endpoint Protection

SentinelOne saves you time by using multiple AI engines, providing complete visibility into all activity, and even rolling back threats with a single agent.

Predict Malicious Behavior

Autonomous monitoring and dynamic behavior tracking detect malicious activity across all threat vectors.

Rapidly Eliminate Threats

Fully-automated, integrated response capabilities eliminate threats and roll manipulated files back to trusted states.

Seamlessly Adapt Defenses

Cloud intelligence and machine learning seamlessly adapt your endpoint and server defenses against the latest malware and attacks.

Do you want better protection?

Hey, We're SentinelOne. We are determined to protect enterprises from cyber threats. Our only question is, will it be yours?

Copyright © 2019 SentinelOne. All Rights Reserved.