Acerca de este Curso
4.5
11 calificaciones
Learn about traditional and mobile malware, the security threats they represent, state-of-the-art analysis and detection techniques, and the underground ecosystem that drives such a profitable but illegal business. Malicious Software and its Underground Economy: Two Sides to Every Story is a short, introductory, and experimental (i.e., pilot) course featuring 6 lectures. Each lecture lasts roughly anything between 1h and 1.5h and is logically divided in a number of ~15 mins self-contained units. Although a non-negligible effort has been made to fulfill this breakdown, some units last definitely longer and require a bit more effort---just pause the video and take a break ;-) In addition, the course features 6 multiple-choices mandatory quizzes (i.e., 1 per lecture) and 1 bonus quiz. Passing all the mandatory quizzes awards a "pass" mark of the course, while passing all the mandatory quizzes and the bonus one awards a "distinction" mark....
Globe

Cursos 100 % en línea

Comienza de inmediato y aprende a tu propio ritmo.
Calendar

Fechas límite flexibles

Restablece las fechas límite en función de tus horarios.
Clock

Approx. 17 hours to complete

Sugerido: 7 hours/week...
Comment Dots

English

Subtítulos: English...
Globe

Cursos 100 % en línea

Comienza de inmediato y aprende a tu propio ritmo.
Calendar

Fechas límite flexibles

Restablece las fechas límite en función de tus horarios.
Clock

Approx. 17 hours to complete

Sugerido: 7 hours/week...
Comment Dots

English

Subtítulos: English...

Programa - Qué aprenderás en este curso

Week
1
Clock
3 horas para completar

Introduction

After reporting on the insights of a real-world research about a botnet takeover, students will learn about malicious software, with a particular glimpse at botnets and their detection to finally conlude brielfy with rootkits.<BR><BR><B>Lecture outline</B><BR>1. Should we care? A botnet takeover storytelling<BR>2. Admin blabbing<BR>3. Malicious software <BR>4. (a glimpse at)Botnets<BR>5. (a glimpse at) Botnets detection & Rootkits...
Reading
12 videos (Total: 115 min), 1 reading, 1 quiz
Video12 videos
Should we care? A botnet takeover storytelling11m
Admin blabbing 11m
Malicious Software (part 1) 10m
Malicious Software (part 2) 9m
(a glimpse at) Botnets (part 1) 10m
(a glimpse at) Botnets (part 2) 6m
(a glimpse at) Botnets (part 3) 10m
(a glimpse at) Botnets detection and Rootkits (part 1)8m
(a glimpse at) Botnets detection and Rootkits (part 2)9m
(a glimpse at) Botnets detection and Rootkits (part 3)11m
(a glimpse at) Botnets detection and Rootkits (part 4)13m
Reading1 lectura
Module One Reading10m
Quiz1 ejercicio de práctica
Week 1 — Quiz50m
Week
2
Clock
3 horas para completar

Static analysis and its limitations

Students will look at the malware landscape of the early days and what effort and challenges the AV industry was facing to fight malware threats. The lecture covers static analysis as a first technique to analyze and detect malware; (basic) assembly and reverse engineering notions are provided with a look at basic techniques to fool the state-of-the-art disassembly algorithm, quickly highlighting the limits of static analysis, especially when focused on analyzing malware. A walk-through to reverse engineer an example program concludes the lecture.<BR><BR>Given the complexity of the topic and the fact the course is a short and introductory class on a vast topic, the aim of the lecture is to provide a broad overview, with a few detailed insights wherever appropriate.<BR><BR><B>Lecture outline</b><BR><BR>1. Early days, AV industry<BR>2. (a glimpse at) Reverse engineering (part 1)<BR>3. (a glimpse at) Reverse engineering (part 2)<BR>4. (a glimpse at) Polymorphism, code obfuscation<BR>5. IDA Pro—a very simple example. . ....
Reading
8 videos (Total: 99 min), 1 reading, 1 quiz
Video8 videos
(a glimpse at) Reverse engineering (part 1.1) 11m
(a glimpse at) Reverse engineering (part 1.2) 11m
(a glimpse at) Reverse engineering (part 1.3) 8m
(a glimpse at) Reverse engineering (part 2) 9m
(a glimpse at) Polymorphism, code obfuscation 18m
IDA Pro—a very simple example. . . (part 1) 10m
IDA Pro—a very simple example. . . (part 2) 13m
Reading1 lectura
Module Two Reading10m
Quiz1 ejercicio de práctica
Week 2 — Quiz4m
Week
3
Clock
3 horas para completar

Dynamic analysis and its limitations

While looking at how the malware landscape has been evolving, students will be given an introduction at dynamic analysis, a complementary technique to static analysis to fight malware threats. Packing and algorithmic-agnostic unpacking is introduced as an initial step toward full dynamic analysis. The lecture quickly mentions sandboxes and limits of dynamic analysis and sandboxes, to finally conclude with a brief overview of a particular academic research state-of-the-art for malware protection.<BR><BR>Given the complexity of the topic and the fact the course is a short and introductory class on a vast topic, the aim of the lecture is to provide a broad overview, with a few detailed insights wherever appropriate.<BR><BR><B>Lecture outline</b><BR><BR>1. Toward dynamic analysis<BR>2. (a glimpse at) Dynamic analysis (part 1)<BR>3. (a glimpse at) Dynamic analysis (part 2)<BR>4. (a glimpse at) Limits of dynamic analysisM<BR>5. AccessMiner—system-centric models...
Reading
7 videos (Total: 87 min), 1 reading, 1 quiz
Video7 videos
(a glimpse at) Dynamic analysis (part 1.1) 11m
(a glimpse at) Dynamic analysis (part 1.2) 14m
(a glimpse at) Dynamic analysis (part 2.1) 10m
(a glimpse at) Dynamic analysis (part 2.2) 9m
(a glimpse at) Limits of dynamic analysis 11m
AccessMiner — system-centric models 15m
Reading1 lectura
Module Three Reading10m
Quiz1 ejercicio de práctica
Week 3 — Dynamic analysis and its limitations2m
Week
4
Clock
2 horas para completar

Mobile malware

The lecture introduces the students to mobile malware threats; in particular, the lecture focuses on Android malware, providing a quick overview of Android applications and describing a <A href= "http://copperdroid.isg.rhul.ac.uk/">virtual machine-based dynamic analysis research</a> carried out in the <a href= "http://www.isg.rhul.ac.uk/">ISG</a> at <a href= "http://www.rhul.ac.uk/">Royal Holloway University of London</a> in collaboration with the <a href= "http://security.di.unimi.it/">LaSER</a> at <a href= "http://www.unimi.it/"> University of Milan</a>.<BR><BR><B>Lecture outline</B><BR><BR>1. Introduction<BR>2. Background<BR>3. CopperDroid: dynamic analysis of Android malware (part 1)<BR>4. CopperDroid: dynamic analysis of Android malware (part 2)...
Reading
4 videos (Total: 49 min), 1 reading, 1 quiz
Video4 videos
Background 12m
Dynamic analysis of Android malware (part 1) 15m
Dynamic analysis of Android malware (part 2) 10m
Reading1 lectura
Module Four Reading10m
Quiz1 ejercicio de práctica
Week 4 — Mobile malware52m

Instructor

Dr Lorenzo Cavallaro

Reader (Associate Professor)
Information Security Group, Royal Holloway, University of London

Acerca de University of London

The University of London is a federal University which includes 18 world leading Colleges. Our distance learning programmes were founded in 1858 and have enriched the lives of thousands of students, delivering high quality University of London degrees wherever our students are across the globe. Our alumni include 7 Nobel Prize winners. Today, we are a global leader in distance and flexible study, offering degree programmes to over 50,000 students in over 180 countries. To find out more about studying for one of our degrees where you are, visit www.london.ac.uk...

Preguntas Frecuentes

  • Una vez que te inscribes para obtener un Certificado, tendrás acceso a todos los videos, cuestionarios y tareas de programación (si corresponde). Las tareas calificadas por compañeros solo pueden enviarse y revisarse una vez que haya comenzado tu sesión. Si eliges explorar el curso sin comprarlo, es posible que no puedas acceder a determinadas tareas.

  • Cuando compras un Certificado, obtienes acceso a todos los materiales del curso, incluidas las tareas calificadas. Una vez que completes el curso, se añadirá tu Certificado electrónico a la página Logros. Desde allí, puedes imprimir tu Certificado o añadirlo a tu perfil de LinkedIn. Si solo quieres leer y visualizar el contenido del curso, puedes participar del curso como oyente sin costo.

¿Tienes más preguntas? Visita el Centro de Ayuda al Alumno.