We are very excited to offer our very popular Hands-on Malware Analysis and Reverse Engineering Primer, taught by Alperovitch Adjunct Professor Juan Andrés Guerrero-Saade. This intensive course will be offered in-person ahead of the January 2024 intersession, from January 8 – 12th, 10AM – 4PM (with a break for lunch).
Please note that the course is by application only. SAIS students can apply here by Dec 15, 2023.
Non-SAIS participants, please drop our Managing Director, Elly Rostoum, a note ([email protected]).
Course Description
Malware analysis is an essential part of cyber threat intelligence work. Newcomers are often intimidated by the idea of handling malware themselves, seeing malware analysis as an esoteric and potentially dangerous practice. This course is a hands-on primer designed to create familiarity and comfort with the analysis of unknown malware samples. The curriculum will take us beyond the use of basic analysis tools to a functional understanding of static and dynamic analysis capabilities. We will also chart a course for further learning to enable the curious to embrace malware analysis and reverse engineering as a core aspect of their prospective careers in CTI. The course offers technical explanations and lab exercises to learn the art and science of reverse engineering. While no previous experience in malware analysis is required, students are urged to complete a set of readings prior to taking the course in order to enable a more intensive hands-on pace.
About Juan Andrés Guerrero-Saade
As AVP of SentinelLabs, Juan Andrés leads threat intel research at SentinelOne. Juan Andrés’ expertise has advanced cyber threat intelligence and analysis methodology, including the discovery of multiple noteworthy threat actors and the development of tools to scale these investigations. He has previously served as a Senior Cybersecurity and National Security Advisor to the President of Ecuador (2012-2013). Juan Andrés’ research and leadership of threat intelligence teams, including at Google, Chronicle, and Kaspersky Lab, have focused on creative approaches to describe complex problems in threat intelligence. His prolific speaking and teaching engagements have included lectures at the Carnegie Mellon CyLab, MIT Sloan School of Management, the University of Oxford, King’s College London, and Georgetown University. Juan Andres’ work is the subject of two permanent exhibits at the International Spy Museum, including the “Cyber Infinity Room” and “Moonlight Maze.” He advocates for a global approach to threat intelligence research that emphasizes the benefit of hindsight and technological advancement often referred to as ‘Cyber Paleontology.‘