Program

/

CODE BLUE 2024

Trainings

Windows Forensics Masterclass with Malware Analysis Essentials

In today’s digital era, the importance of digital forensics cannot be overstated.

This 3-day beginner-friendly hands-on training immerses participants in the Digital Forensics Lifecycle, guiding them through the collection and analysis of digital evidence using a range of free and open-source tools.

With a focus on Windows forensics, attendees will explore both disk and memory analysis through engaging case studies. The training addresses common challenges in the field, including forensic tool validation, the need for fundamental malware analysis skills, rapid triage of ever-growing volumes of evidence data, and techniques for fast forensics and report writing. Additionally, participants will gain insights into the latest advancements, such as harnessing cloud and AI capabilities. The training culminates in a practical assessment of skills learned through a Capture The Flag (CTF) challenge to reinforce learning and build muscle memory.

Attendees will receive detailed lab instructions, cheatsheets, and evidence files to facilitate practical forensic analysis, ensuring they are confident and clear on how to apply the knowledge gained here to investigate real-world scenarios.

Training Outline

  • Title

    Windows Forensics Masterclass with Malware Analysis Essentials

  • Trainer

    Surya Teja Masanam(スーリヤ・テジャ・マサナム)

  • Trainer

    Saksham Tushar(サクシャム・トゥシャール)

  • Date

    [Reschedule]November 11th (MON) - 13th (WED), 2024 , 9:00 - 18:30 , 3 days

  • Venue

  • Capacity

    40 students (*Minimum students count is 10)

  • Remarks

    • Include 2day Conference ticket(November 14th to 15th, 2024) for training attendee
    • This course is provided in English.

Training Application

Buying Ticket
Ticket Standard
Price 198,000 JPY (Inc.TAX)
Sales period 〜November 10th
Sales Status End

Training Detail

Who should take this course
This training is for those who want to learn the abilities to:

  • Comprehensive understanding of the Digital Forensics Lifecycle with practical skills in Windows forensics, covering evidence collection strategies and analysis of disk, and memory with malware analysis fundamentals.
  • Art of converting forensic analyses into clear, actionable reports and self-sufficient to build their own forensic toolkit with free and open-source tools
  • Go the Extra mile and get insights on leveraging Cloud and Automations to perform fast-forensics and achieve quick-wins
Student requirementsd
  • Familiarity with Windows Operating System.
  • Cybersecurity basics and terminology
  • Knowledge on handling virtual machines
  • Curiosity, Willingness, and of course, the Lab requirements too ;-)

What student should bring

  • Laptop with Windows 10/11 64-bit
  • Processor: Core i5 or equivalent processor
  • RAM: 8GB+ (minimum 8GB is recommended)
  • Disk Space: 100 GB -
  • Virtualisation Support enabled
  • Admin/install rights

What student will be provided with

  • Course Content
  • Lab Manual with step-by-step instructions
  • Forensics Toolkit)
  • Cheatsheets
  • Resources for further practice

Trainer:Surya Teja Masanam(スーリヤ・テジャ・マサナム)
Surya Teja Masanam is a Digital Forensic Investigator and a Malware Analyst with 8+ years of experience in successfully building and running DFIR programs from scratch with SOPs and field manuals in the organizations he worked for. Currently, Surya leads the Digital Forensics & Incident Response charter at a fintech company, bringing several years of experience in handling cases involving Windows, Linux, Mac and AWS in both corporate and government bodies. Engaging, understanding, and knowledgeable technical trainer, with expertise in instructing both small and large groups across diverse industries. Surya believes evangelism should be an inherent character trait among security professionals. He has delivered trainings at renowned conferences such as DEFCON Blue Team Village, BSides Singapore, Shellcon, Vulncon, X33FCON and has also raised awareness about cybersecurity in NGOs.。

Trainer:VSaksham Tushar(サクシャム・トゥシャール)
Saksham Tushar specializes in various aspects of Threats, including intelligence, detection, analytics, and hunting. He has experience leading teams and collaborating with organizations such as Informatica, Microsoft, and IBM to establish multiple global Security Operations Centers. Currently, he holds the position of Head of Security Operations at CRED India. He possesses extensive expertise in developing, refining, and transitioning Threat Management programs, including Advanced MDR Operations across ASEAN & EMEA regions. Additionally, he creates threat detections and hunts and shares them with the community through analytical Notebooks.