Course Curriculum

  • 01

    Windows Architecture

    • Windows Architecture Part 1

    • Windows Architecture Part 2

    • Windows Architecture Part 3

  • 02

    Monitoring Malicious Behavior

    • Introduction to Dynamic Analysis

    • Monitoring System Processes

    • Monitoring System Events

    • Monitoring Autoruns

    • Monitoring API Calls

    • Required Files

    • Exercise_#1

    • Exercise #1 - Solutions

    • Exercise_#2

    • Exercise #2 - Solutions

    • Exercise #3

    • Exercise #3 - Solutions

  • 03

    Monitoring Network Traffic

    • Introduction to Network Analysis Tools

    • Capturing Malware Traffic

    • Analyzing Malware Traffic

    • Required Files

    • Exercise #1

    • Exercise #1 - Solutions

    • Exercise #2

    • Exercise #2 - Solutions

  • 04

    Resource(s)

    • Resource(s)

Learning Outcomes

After completing this course, you will learn the following:

  • Learn the basics of Windows architecture

  • Learn how to monitor malware behavior on the system

  • Learn how to capture and analyze malware network traffic

Technical Requirements

For the hands-on labs in this course

  • Internet Connection

  • Workstation with at least 16GB RAM and 100GB Disk Space

  • Operating System (Windows or Linux)

  • VirtualBox or VMWare (hypervisor)

What is next at Cyber 5W?

Add your email to the mailing list to get the latest updates