Threat Hunting Using Memory Forensics

Objectives of Training:

Memory forensics is a powerful investigation technique used in digital forensics and incident response. With adversaries getting sophisticated and carrying out advanced malware attacks on critical infrastructures, Data Centers, private and public organizations, it is essential for cybersecurity professionals to have the necessary skills to detect, respond, and investigate such intrusions. Memory Forensics has become a must-have skill for fighting advanced malware, targeted attacks, and security breaches. This intensive training focuses explicitly on threat hunting using memory forensics, empowering attendees with comprehensive skills in malware detection, incident response, and deep memory analysis. It introduces attendees to the topic of Windows internals and techniques to perform malware and Rootkit investigations. The training is enriched with scenario-based, hands-on labs featuring realistic cases, including crimeware, APT malware, and rootkit-infected memory images. By the end of the course, students will gain practical knowledge and become proficient in identifying malicious processes, hidden malware, advanced persistent threats (APTs), and rootkits through memory analysis.