MALWARE ANALYSIS // How to get started with John Hammond |
|
|
The amazing John Hammond tells us how to get into Malware Analysis. Learn about jobs, what you need to know and much more!
Menu: 0:00 ▶️ Pretty sketchy stuff! 0:37 ▶️ Welcome John Hammond 0:53 ▶️ Don't divide cyber in your mind 2:00 ▶️ John's day job 3:17 ▶️ Hacker's crafty methods 4:02 ▶️ Will AI take jobs away? 4:55 ▶️ How do I become like you? 5:35 ▶️ Windows is very important 6:12 ▶️ Malware vs CTFs 6:32 ▶️ Is Malware mainly on Windows systems? 7:28 ▶️ Always comes back to the same thing 8:50 ▶️ Practical Example 9:29 ▶️ John's setup 11:42 ▶️ Python malware example 12:50 ▶️ Malware code 15:50 ▶️ Bad guys can sell this information 16:30 ▶️ But this is in the clear? 17:14 ▶️ Obfuscated version 18:28 ▶️ Real world? Don't want to touch disk 19:50 ▶️ How do I find this stuff 20:58 ▶️ Weird Spam SMS messages 21:30 ▶️ Real World: Finding malware 23:42 ▶️ John's real world company example 24:20 ▶️ Real world logic to find malware 25:23 ▶️ Detectors 25:48 ▶️ Hunting malware 26:25 ▶️ Use your eyes - don't trust an automated systems 27:15 ▶️ Input from other systems 27:49 ▶️ How do I become like you? 28:00 ▶️ What kind of skills would you look for in a person to get a job 29:24 ▶️ Look at malware sites 30:15 ▶️ Build out a library 30:38 ▶️ David pushes John for a job on LinkedIn 33:05 ▶️ How did John get his job? 33:30 ▶️ Use social media 34:31 ▶️ How John got his first job 35:55 ▶️ It's who you know, not what you know 36:30 ▶️ How John got his current job 38:19 ▶️ Would you hire someone with certs; or someone you know 39:50 ▶️ Windows bat script example 45:08 ▶️ Which languages does John know 45:38 ▶️ How do you know if it is good or bad code? 46:45 ▶️ Office Macros Malware Example 50:40 ▶️ Cool Linux command 51:26 ▶️ Is this a good job? Are there lots of job? 52:30 ▶️ What hours do you work? 53:31 ▶️ Any books you recommend? John Hammond Playlist: https://davidbombal.wiki/johnhammond ==================== Web Sites mentioned: ==================== Use at your own risk: vx-underground: https://twitter.com/vxunderground theZoo: https://twitter.com/vxunderground Malware Bazaar: https://bazaar.abuse.ch/ Joe Sandbox: https://www.joesecurity.org/ Any run: https://any.run/ VirusTotal: https://www.virustotal.com/gui/home/upload ====== Books: ====== The IDA Pro Book: https://amzn.to/3DtEATW Black Hat Go: Go Programming For Hackers and Pentesters: https://amzn.to/3gISKa4 Black Hat Python: Python Programming for Hackers and Pentesters: https://amzn.to/3ta50FH Python Pocket Reference https://amzn.to/3mQPME2 Linux Pocket Guide: Essential Commands: https://amzn.to/2UWBwya Regular Expression Pocket Reference: https://amzn.to/3gJoP1f Linux Basics for Hackers: Getting Started with Networking, Scripting, and Security in Kali: https://amzn.to/3Ds22Rq ================ Connect with me: ================ Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: https://www.youtube.com/davidbombal ================ Connect with John: ================ YouTube: https://www.youtube.com/johnhammond010 Twitter: https://twitter.com/_johnhammond LinkedIn: https://www.linkedin.com/in/johnhammond010 malware malware analysis cybersecurity cybersecurity jobs hacking ethical hacking hacking jobs john hammond hack the box try hack me htb thm cyber security career cybersecurity cybersecurity careers ceh oscp ine oscp certification ctf for beginners first job cybersecurity job Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! #malware #hacking #cybersecurity |
