Detecting Sandbox Evasion Techniques in Malware Analysis
Offered By: USENIX Enigma Conference via YouTube
Course Description
Overview
Explore the world of sandbox evasion techniques in this 17-minute conference talk from USENIX Enigma 2020. Delve into the methods used by cyber attackers to detect and evade sandbox environments, concealing their true behavior to avoid detection. Learn how to harden sandbox systems against these evasion techniques, and discover unique malware samples that implement these strategies. Gain insights into using the MITRE ATT&CK Framework to document these techniques and improve detection and analysis systems. Covering topics such as environment awareness, system architecture, time-based detection, user-based detection, and network-based detection, this talk provides valuable knowledge for cybersecurity professionals and enthusiasts alike.
Syllabus
Intro
OVERVIEW - AGENDA
ENVIRONMENT AWARENESS
TECHNIQUES
SYSTEM ARCHITECTURE
SYSTEM BACKGROUND
TIME-BASED DETECTION
USER-BASED DETECTION
NETWORK-BASED DETECTION
RESULTS - APT TRACKING
RESULTS & INSIGHT
CLOSING REMARKS
Taught by
USENIX Enigma Conference
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network