Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Pluralsight

Specialized Malware: Code Injection

via Pluralsight

Overview

Designed for aspiring malware analysts and exploit developers, this course caters to individuals interested in the exploitation of the Win32 APIs to inject shellcode into remote processes.



Understanding code injection in Windows and analyzing indicators of compromise (IOCs) is crucial for cybersecurity professionals aiming to defend against sophisticated attacks. In this course, Specialized Malware: Code Injection, you’ll learn to understand how hackers develop code injection exploits by using the Win32 APIs to inject code into the virtual memory of a remote process and trigger thread creation to run the code. You will be introduced to the tools you can use to extract IOCs from memory for analysis. First, you’ll explore the anatomy of code injection in the Windows operating system, gaining a comprehensive understanding of how these exploits operate at a fundamental level. Next, you’ll discover DLL Injection, including reflective injection, and learn how attackers use these methods to inject malicious code stealthily. Finally, you’ll learn advanced code injection techniques such as process hollowing, which allows malware to masquerade as legitimate processes. When you’re finished with this course, you’ll have the skills and knowledge of code injection needed to understand, develop, and analyze sophisticated code injection exploits, as well as extract valuable IOCs from memory for in-depth analysis.

Syllabus

  • Course Overview 1min
  • The Anatomy of Code Injection 15mins
  • DLL Injection 12mins
  • Code Injection Techniques 16mins

Taught by

John Tear

Reviews

Start your review of Specialized Malware: Code Injection

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.