Anti-Disassembly, Anti-Debugging and Anti-VM
Malware doesn't want to be disassembled, and it's going to fight you. Seven videos examine anti-disassembly, anti-debugging and anti-VM strategies used by malware.
Any program that runs can be disassembled, but that doesn’t mean it’s going to be easy. Seven videos take you through the different ways malware can fight back against disassembly, debugging and being trapped in virtual machines, including time-wasting use of breakpoints, checking flags to detect the presence of a debugger or a virtual machine, setting timing checks, calling botnets to DoS the machine, Red Pill/No Pill techniques and more.
Detecting DebuggersDuration: 3:07
Advanced Anti-Debugging TechniquesDuration: 7:02
VMware ArtifactsDuration: 5:05
Red Pill and No PillDuration: 2:39
IO Communication PortDuration: 3:28
VMware Detection and EscapingDuration: 3:28
Meet the author
At Infosec, we believe knowledge is the most powerful tool in the fight against cybercrime. We help IT and security professionals advance their careers with a full regimen of certification and skills training. We also empower all employees with security awareness training to stay cybersecure at work and home. Driven by smart people wanting to do good, Infosec educates entire organizations on how to defend themselves from cybercrime. That’s what we do every day — equipping everyone with the latest security skills so the good guys win.
You're in good company
"Comparing Infosec to other vendors is like comparing apples to oranges. My instructor was hands-down the best I’ve had."
"I knew Infosec could tell me what to expect on the exam and what topics to focus on most."
"I’ve taken five boot camps with Infosec and all my instructors have been great."