Evasive Malware: A Field Guide to Detecting, Analyzing, and Defeating Advanced Threats

★★★★★ 4.4 76 reviews

$38.23
Price when purchased online
Free shipping Free 30-day returns

Sold and shipped by dgeojv.org
We aim to show you accurate product information. Manufacturers, suppliers and others provide what you see here.
$38.23
Price when purchased online
Free shipping Free 30-day returns

How do you want your item?
You get 30 days free! Choose a plan at checkout.
Shipping
Arrives Jul 15
Free
Pickup
Check nearby
Delivery
Not available

Sold and shipped by dgeojv.org
Free 30-day returns Details

Product details

Management number 233519910 Release Date 2026/06/27 List Price $15.29 Model Number 233519910
Category

Get up to speed on state-of-the-art malware with this first-ever guide to analyzing malicious Windows software designed to actively avoid detection and forensic tools.We’re all aware of Stuxnet, ShadowHammer, Sunburst, and similar attacks that use evasion to remain hidden while defending themselves from detection and analysis. Because advanced threats like these can adapt and, in some cases, self-destruct to evade detection, even the most seasoned investigators can use a little help with analysis now and then. Evasive Malware will introduce you to the evasion techniques used by today’s malicious software and show you how to defeat them.Following a crash course on using static and dynamic code analysis to uncover malware’s true intentions, you’ll learn how malware weaponizes context awareness to detect and skirt virtual machines and sandboxes, plus the various tricks it uses to thwart analysis tools. You’ll explore the world of anti-reversing, from anti-disassembly methods and debugging interference to covert code execution and misdirection tactics. You’ll also delve into defense evasion, from process injection and rootkits to fileless malware. Finally, you’ll dissect encoding, encryption, and the complexities of malware obfuscators and packers to uncover the evil within.You’ll learn how malware:Abuses legitimate components of Windows, like the Windows API and LOLBins, to run undetected Uses environmental quirks and context awareness, like CPU timing and hypervisor enumeration, to detect attempts at analysisBypasses network and endpoint defenses using passive circumvention techniques, like obfuscation and mutation, and active techniques, like unhooking and tamperingDetects debuggers and circumvents dynamic and static code analysisYou’ll also find tips for building a malware analysis lab and tuning it to better counter anti-analysis techniques in malware. Whether you’re a frontline defender, a forensic analyst, a detection engineer, or a researcher, Evasive Malware will arm you with the knowledge and skills you need to outmaneuver the stealthiest of today’s cyber adversaries. Read more

ISBN10 1718503261
ISBN13 978-1718503267
Language English
Publisher No Starch Press
Dimensions 7 x 1.11 x 9.12 inches
Item Weight 2.31 pounds
Print length 488 pages
Publication date September 10, 2024

Correction of product information

If you notice any omissions or errors in the product information on this page, please use the correction request form below.

Correction Request Form

Customer ratings & reviews

4.4 out of 5
★★★★★
76 ratings | 31 reviews
How item rating is calculated
View all reviews
5 stars
81% (62)
4 stars
5% (4)
3 stars
2% (2)
2 stars
1% (1)
1 star
11% (8)
Sort by

There are currently no written reviews for this product.