Saturday, July 19, 2003
Lenny Zeltser's Reverse Engineering Malware
I just finished day two of Lenny Zeltser's Reverse Engineering Malware course at SANSFIRE 2003. The class was excellent, with hands-on use of trial versions of IDA Pro to disassemble and Ollydbg to debug a bot (download -- beware!). The course combined passive analysis of the binary with active analysis of its behavior and its posture in memory.