Office Document Analysis (Live Virtual Class)

Blended learning

Who is the training for?

Developers, System administrators, Systems engineers

Duration

2,00 day(s)

Language(s) of service

EN FR

Next session

24.11.2024
Location
Live Virtual Class

Price

1450,00€

Prerequisites

Knowledge of Linux, Python and scripting

Goals

We propose a two-day training named "Office documents analysis". It will enable you to understand how the malwares are using office documents as initial infection stage.

It will help your Incident response team to determine by itself if an office document is malicious. At the end of the training, you will be able to extract the payload and determine the IOC of a sample.

The training is 50% lectures and 50% lab.

The course will start by a refresh on the current threat landscape. The student will learn how to setup his own office analysis lab and will learn and practise the identification, analyse on various malicious office documents. The student will learn how obfuscation is in place and how to isolate a shellcode or an malicious payload.

After this formation, the student will be able to qualify the maliciousness of a given office document by his own.

Contents

The following courses syllabus will be learned:

  • Treat landscape
  • Setup forensic Lab and Tools
  • Why opening theses files & document identification
  • Understand how macro deliver payload
  • Extraction of Macro
  • Macro Goal
  • Obfuscation

Certificate, diploma

Une attestation de participation sera transmise aux participants

Next session

Datum
City
Language and price
24.11.2024

25.11.2024
Live Virtual Class
FR 1450,00€

Organization contact details

Nathalie Thielemans / Nassera Aici

These courses might interest you