Explore a cutting-edge approach for Blue Teams in detecting sophisticated malware and ransomware in this 38-minute Black Hat conference talk. Delve into the challenges faced by defensive cybersecurity professionals when reverse engineering suspected malicious binaries, particularly those employing advanced obfuscation techniques. Learn how to determine the uniqueness and complexity of a sample, and gain insights into choosing between static and dynamic analysis methods. Discover the potential of using symbolic engines to enhance detection capabilities for evasive forms of malware and ransomware, equipping Blue Teams with innovative tools to stay ahead in the ever-evolving landscape of cyber threats.
Overview
Syllabus
A New Trend for the Blue Team: Using a Symbolic Engine to Detect Evasive Forms of Malware/Ransomware
Taught by
Black Hat