search
ArchiveAbout Us

πŸ‘ΎMalware and Reverse Engineering Resources

A compiled list of resources, certifications, and training to help you on your Malware Analysis and Reverse Engineering Journey

hashtag
*Disclaimer: These resources are for your educational pursuits in learning Malware Analysis and Reverse Engineering. It is highly discouraged to use these resources for anything other than educational pursuits and the author is not liable for what you do in your own time.... so be good.*

hashtag
Malware Analysis Certifications

  1. (GREM) Giac Reverse Engineering and Malware by SANS https://www.giac.org/certifications/reverse-engineering-malware-grem/arrow-up-right

  2. (PJMR) Practical Junior Malware Researcher by TCM Security https://certifications.tcm-sec.com/pjmr/arrow-up-right

hashtag
Malware Analysis and Reverse Engineering Training

  1. FOR610: Reverse-Engineering Malware: Malware Analysis Tools and Techniques https://www.sans.org/cyber-security-courses/reverse-engineering-malware-malware-analysis-tools-techniques/arrow-up-right

  2. FOR710: Reverse-Engineering Malware: Advanced Code Analysis https://www.sans.org/cyber-security-courses/reverse-engineering-malware-advanced-code-analysis/arrow-up-right

  3. Cracking Lessons (CSL/CSP/MDV1/MDV2) https://www.crackinglessons.comarrow-up-right

  4. Practical Malware Analysis and Triage https://academy.tcm-sec.com/p/practical-malware-analysis-triagearrow-up-right

  5. Ultimate Malware Analysis by Zero2Automated https://lnkd.in/dN7v2zNjarrow-up-right

  6. OALabs RE101/201/504 https://www.patreon.com/oalabsarrow-up-right https://github.com/OALabs/Lab-Notesarrow-up-right https://github.com/OALabs/researcharrow-up-right https://research.openanalysis.net/arrow-up-right

  7. Malware Analysis Fundamentals by Let's Defend https://lnkd.in/dSDUeyP7arrow-up-right

  8. CS6038/CS5138 Malware Analysis https://class.malware.re/arrow-up-right

  9. Malware Analysis CSCI 4976 by RPISEC https://github.com/RPISEC/Malwarearrow-up-right

  10. Reverse Engineering 101/102 by Malware Unicorn https://malwareunicorn.org/workshops/re101.html#0arrow-up-right https://malwareunicorn.org/workshops/re102.html#0arrow-up-right

  11. Mandiant:

    1. Essentials of Malware Analysisarrow-up-right

    2. Malware Analysis Fundamentalsarrow-up-right

    3. Malware Analysis Crash Coursearrow-up-right

    4. Malicious Documents Analysisarrow-up-right

    5. Advanced Red Teaming Techniques: Malware Authoring and Repurposingarrow-up-right

    6. Malware Analysis Master Coursearrow-up-right

  12. https://vimeo.com/30076325arrow-up-right

  13. https://vimeo.com/30594548arrow-up-right

  14. https://youtu.be/Pg8bmV9vcKgarrow-up-right

  15. https://malwareunicorn.org/workshops/re101.html#0arrow-up-right

  16. https://malwareunicorn.org/workshops/re102.html#0arrow-up-right

  17. https://github.com/cspinstructor/github-crackmesarrow-up-right

  18. https://signal-labs.com/self-paced-trainings/arrow-up-right $$

  19. https://www.reverse-engineer.net/arrow-up-right $$$$

  20. https://www.maldevacademy.com/arrow-up-right

hashtag
Books:

  1. Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software https://lnkd.in/dmyhKDBVarrow-up-right https://www.amazon.com/Practical-Malware-Analysis-Hands-Dissecting/dp/1593272901arrow-up-right

  2. Malware Analysis Detection Engineering https://www.amazon.com/Malware-Analysis-Detection-Engineering-Comprehensive/dp/1484261925arrow-up-right

  3. Malware Analyst’s Cookbook https://www.amazon.com/Malware-Analysts-Cookbook-DVD-Techniques/dp/0470613033arrow-up-right

  4. Reversing: Secrets of Reverse Engineering https://www.amazon.com/Reversing-Secrets-Engineering-Eldad-Eilam/dp/0764574817arrow-up-right

  5. (Threat Intel Book) Operationalizing Threat Intelligence https://www.amazon.com/Operationalizing-Threat-Intelligence-operationalizing-intelligence/dp/1801814686arrow-up-right

hashtag
Blogs:

  1. https://n1ght-w0lf.github.io/arrow-up-right

  2. https://farghlymal.github.io/arrow-up-right

  3. https://dr4k0nia.github.io/arrow-up-right

  4. https://t.co/b2pPNUs5tcarrow-up-right

  5. https://t.co/0MmaO0sitsarrow-up-right

  6. https://t.co/FWLPHDgLAJarrow-up-right

  7. https://forensicitguy.github.io/arrow-up-right

  8. https://squiblydoo.blog/blog/arrow-up-right

  9. https://blog.bushidotoken.net/arrow-up-right

  10. https://t.co/Foaierv2huarrow-up-right

  11. https://t.co/f6I7ZPWGM7arrow-up-right

  12. https://protectedmo.de/brute.htmlarrow-up-right

  13. https://t.co/Z6AlMCeCzSarrow-up-right

  14. https://t.co/i4OjTGjLcLarrow-up-right

  15. https://russianpanda.com/2023/06/28/Meduza-Stealer-or-The-Return-of-The-Infamous-Aurora-Stealer/arrow-up-right

  16. https://exploitreversing.com/arrow-up-right - really good malware blogs

  17. http://fumalwareanalysis.blogspot.com/p/malware-analysis-tutorials-reverse.html?m=1arrow-up-right

  18. https://cyb3rkitties.github.io/posts/malware-analysis-reverse-engineering-beginner-study-plan/arrow-up-right

  19. https://squiblydoo.blog/2023/06/05/understanding-pe-bloat-with-malcat/arrow-up-right

  20. https://legend.octopuslabs.io/sample-page.htmlarrow-up-right

  21. https://gitlab.com/39iosdev/ccd-iqt/idf/C-Programmingarrow-up-right

  22. https://vxug.fakedoma.in/arrow-up-right

  23. https://github.com/guyinatuxedo/nightmarearrow-up-right

  24. https://zeltser.com/malicious-software/arrow-up-right β€”Author of GREM (Great blog)

RE Microsoft Defender

https://github.com/0xAlexei/WindowsDefenderToolsarrow-up-right

RECON-BRX-2018-Reverse-Engineering-Windows-Defender-s-JavaScript-Engine.pdfarrow-up-right

us-18-Bulazel-Windows-Offender-Reverse-Engineering-Windows-Defenders-Antivirus-Emulator.pdfarrow-up-right

hashtag
Malware/RE Practice Ranges

  1. RE malware source code and samples (VXUnderground)

    1. https://github.com/vxunderground/MalwareSourceCodearrow-up-right

    2. https://github.com/vxunderground/VX-APIarrow-up-right

  2. Malware Zoo with a large collection of malware in a single python database

  3. https://github.com/ytisf/theZooarrow-up-right

  4. https://malwiki.org/index.phparrow-up-right

  5. Flare-On CTF collections

  6. https://flare-on.com/arrow-up-right

  8. https://cyberdefenders.org/arrow-up-right

hashtag
Tools

  1. https://malcat.fr/arrow-up-right

  2. Flare-VM https://github.com/mandiant/flare-vmarrow-up-right

  3. Binary Ninja

    1. https://binary.ninja/arrow-up-right

hashtag
Security Research Groups Within Companies:

Tyto athene

Cisco Talos

Palo Alto Unit42

Mandiant

CrowdStrike

Carbon Black

Google project zero

Last updated