MALWARE ANALYSIS // How to get started with John Hammond

The amazing John Hammond tells us how to get into Malware Analysis. Learn about jobs, what you need to know and much more! Menu: 0:00 ▶️ Pretty sketchy stuff! 0:37 ▶️ Welcome John Hammond 0:53 ▶️ Don't divide cyber in your mind 2:00 ▶️ John's day job 3:17 ▶️ Hacker's crafty methods 4:02 ▶️ Will AI take jobs away? 4:55 ▶️ How do I become like you? 5:35 ▶️ Windows is very important 6:12 ▶️ Malware vs CTFs 6:32 ▶️ Is Malware mainly on Windows systems? 7:28 ▶️ Always comes back to the same thing 8:50 ▶️ Practical Example 9:29 ▶️ John's setup 11:42 ▶️ Python malware example 12:50 ▶️ Malware code 15:50 ▶️ Bad guys can sell this information 16:30 ▶️ But this is in the clear? 17:14 ▶️ Obfuscated version 18:28 ▶️ Real world? Don't want to touch disk 19:50 ▶️ How do I find this stuff 20:58 ▶️ Weird Spam SMS messages 21:30 ▶️ Real World: Finding malware 23:42 ▶️ John's real world company example 24:20 ▶️ Real world logic to find malware 25:23 ▶️ Detectors 25:48 ▶️ Hunting malware 26:25 ▶️ Use your eyes - don't trust an automated systems 27:15 ▶️ Input from other systems 27:49 ▶️ How do I become like you? 28:00 ▶️ What kind of skills would you look for in a person to get a job 29:24 ▶️ Look at malware sites 30:15 ▶️ Build out a library 30:38 ▶️ David pushes John for a job on LinkedIn 33:05 ▶️ How did John get his job? 33:30 ▶️ Use social media 34:31 ▶️ How John got his first job 35:55 ▶️ It's who you know, not what you know 36:30 ▶️ How John got his current job 38:19 ▶️ Would you hire someone with certs; or someone you know 39:50 ▶️ Windows bat script example 45:08 ▶️ Which languages does John know 45:38 ▶️ How do you know if it is good or bad code? 46:45 ▶️ Office Macros Malware Example 50:40 ▶️ Cool Linux command 51:26 ▶️ Is this a good job? Are there lots of job? 52:30 ▶️ What hours do you work? 53:31 ▶️ Any books you recommend? John Hammond Playlist: https://davidbombal.wiki/johnhammond ==================== Web Sites mentioned: ==================== Use at your own ris