MALWARE ANALYSIS // How to get started with John Hammond
Ғылым және технология
The amazing John Hammond tells us how to get into Malware Analysis. Learn about jobs, what you need to know and much more!
Menu:
0:00 ▶️ Pretty sketchy stuff!
0:37 ▶️ Welcome John Hammond
0:53 ▶️ Don't divide cyber in your mind
2:00 ▶️ John's day job
3:17 ▶️ Hacker's crafty methods
4:02 ▶️ Will AI take jobs away?
4:55 ▶️ How do I become like you?
5:35 ▶️ Windows is very important
6:12 ▶️ Malware vs CTFs
6:32 ▶️ Is Malware mainly on Windows systems?
7:28 ▶️ Always comes back to the same thing
8:50 ▶️ Practical Example
9:29 ▶️ John's setup
11:42 ▶️ Python malware example
12:50 ▶️ Malware code
15:50 ▶️ Bad guys can sell this information
16:30 ▶️ But this is in the clear?
17:14 ▶️ Obfuscated version
18:28 ▶️ Real world? Don't want to touch disk
19:50 ▶️ How do I find this stuff
20:58 ▶️ Weird Spam SMS messages
21:30 ▶️ Real World: Finding malware
23:42 ▶️ John's real world company example
24:20 ▶️ Real world logic to find malware
25:23 ▶️ Detectors
25:48 ▶️ Hunting malware
26:25 ▶️ Use your eyes - don't trust an automated systems
27:15 ▶️ Input from other systems
27:49 ▶️ How do I become like you?
28:00 ▶️ What kind of skills would you look for in a person to get a job
29:24 ▶️ Look at malware sites
30:15 ▶️ Build out a library
30:38 ▶️ David pushes John for a job on LinkedIn
33:05 ▶️ How did John get his job?
33:30 ▶️ Use social media
34:31 ▶️ How John got his first job
35:55 ▶️ It's who you know, not what you know
36:30 ▶️ How John got his current job
38:19 ▶️ Would you hire someone with certs; or someone you know
39:50 ▶️ Windows bat script example
45:08 ▶️ Which languages does John know
45:38 ▶️ How do you know if it is good or bad code?
46:45 ▶️ Office Macros Malware Example
50:40 ▶️ Cool Linux command
51:26 ▶️ Is this a good job? Are there lots of job?
52:30 ▶️ What hours do you work?
53:31 ▶️ Any books you recommend?
John Hammond Playlist: davidbombal.wiki/johnhammond
====================
Web Sites mentioned:
====================
Use at your own risk:
vx-underground: / vxunderground
theZoo: / vxunderground
Malware Bazaar: bazaar.abuse.ch/
Joe Sandbox: www.joesecurity.org/
Any run: any.run/
VirusTotal: www.virustotal.com/gui/home/u...
======
Books:
======
The IDA Pro Book: amzn.to/3DtEATW
Black Hat Go: Go Programming For Hackers and Pentesters: amzn.to/3gISKa4
Black Hat Python: Python Programming for Hackers and Pentesters: amzn.to/3ta50FH
Python Pocket Reference amzn.to/3mQPME2
Linux Pocket Guide: Essential Commands: amzn.to/2UWBwya
Regular Expression Pocket Reference: amzn.to/3gJoP1f
Linux Basics for Hackers: Getting Started with Networking, Scripting, and Security in Kali: amzn.to/3Ds22Rq
================
Connect with me:
================
Discord: / discord
Twitter: / davidbombal
Instagram: / davidbombal
LinkedIn: / davidbombal
Facebook: / davidbombal.co
TikTok: / davidbombal
KZread: / davidbombal
================
Connect with John:
================
KZread: / johnhammond010
Twitter: / _johnhammond
LinkedIn: / johnhammond010
malware
malware analysis
cybersecurity
cybersecurity jobs
hacking
ethical hacking
hacking jobs
john hammond
hack the box
try hack me
htb
thm
cyber security career
cybersecurity
cybersecurity careers
ceh
oscp
ine
oscp certification
ctf for beginners
first job
cybersecurity job
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
#malware #hacking #cybersecurity
Пікірлер: 343
Yo David, just wanted to thank you for the free courses on Udemy! Being from Bangladesh 🇧🇩 it is difficult (not impossible) for us to make international transaction legitimately through a bank. So, your free courses are kinda life saver!!! So thank you very much!!!
@davidbombal
2 жыл бұрын
I'm really happy to hear that I could help you Saroar 😀
@itsme7570
2 жыл бұрын
That's awesome, David you were a major factor in me signing up for school so thank you for that sir
@toioburrahman7864
2 жыл бұрын
Are you Bangladeshi?
@rubayethassan5615
2 жыл бұрын
Saroar Ahmed.....glad to have you in that channel...I don't know why our Bangladeshi people's don't watch these channels....
@toioburrahman7864
2 жыл бұрын
@@rubayethassan5615 where is your house in Bangladesh?
I love the conciseness of this channel. Timestamps, no time wasted, doesn’t talk _too_ much. 👌
Menu: 0:00 ▶ Pretty sketchy stuff! 0:37 ▶ Welcome John Hammond 0:53 ▶ Don't divide cyber in your mind 2:00 ▶ John's day job 3:17 ▶ Hacker's crafty methods 4:02 ▶ Will AI take jobs away? 4:55 ▶ How do I become like you? 5:35 ▶ Windows is very important 6:12 ▶ Malware vs CTFs 6:32 ▶ Is Malware mainly on Windows systems? 7:28 ▶ Always comes back to the same thing 8:50 ▶ Practical Example 9:29 ▶ John's setup 11:42 ▶ Python malware example 12:50 ▶ Malware code 15:50 ▶ Bad guys can sell this information 16:30 ▶ But this is in the clear? 17:14 ▶ Obfuscated version 18:28 ▶ Real world? Don't want to touch disk 19:50 ▶ How do I find this stuff 20:58 ▶ Weird Spam SMS messages 21:30 ▶ Real World: Finding malware 23:42 ▶ John's real world company example 24:20 ▶ Real world logic to find malware 25:23 ▶ Detectors 25:48 ▶ Hunting malware 26:25 ▶ Use your eyes - don't trust an automated systems 27:15 ▶ Input from other systems 27:49 ▶ How do I become like you? 28:00 ▶ What kind of skills would you look for in a person to get a job 29:24 ▶ Look at malware sites 30:15 ▶ Build out a library 30:38 ▶ David pushes John for a job on LinkedIn 33:05 ▶ How did John get his job? 33:30 ▶ Use social media 34:31 ▶ How John got his first job 35:55 ▶ It's who you know, not what you know 36:30 ▶ How John got his current job 38:19 ▶ Would you hire someone with certs; or someone you know 39:50 ▶ Windows bat script example 45:08 ▶ Which languages does John know 45:38 ▶ How do you know if it is good or bad code? 46:45 ▶ Office Macros Malware Example 50:40 ▶ Cool Linux command 51:26 ▶ Is this a good job? Are there lots of job? 52:30 ▶ What hours do you work? 53:31 ▶ Any books you recommend? John Hammond Playlist: davidbombal.wiki/johnhammond ================== Web Sites mentioned: ================== Use at your own risk: vx-underground: twitter.com/vxunderground theZoo: twitter.com/vxunderground Malware Bazaar: bazaar.abuse.ch/ Joe Sandbox: www.joesecurity.org/ Any run: any.run/ VirusTotal: www.virustotal.com/gui/home/upload ====== Books: ====== The IDA Pro Book: amzn.to/3DtEATW Black Hat Go: Go Programming For Hackers and Pentesters: amzn.to/3gISKa4 Black Hat Python: Python Programming for Hackers and Pentesters: amzn.to/3ta50FH Python Pocket Reference amzn.to/3mQPME2 Linux Pocket Guide: Essential Commands: amzn.to/2UWBwya Regular Expression Pocket Reference: amzn.to/3gJoP1f Linux Basics for Hackers: Getting Started with Networking, Scripting, and Security in Kali: amzn.to/3Ds22Rq ================ Connect with me: ================ Discord: discord.com/invite/usKSyzb Twitter: twitter.com/davidbombal Instagram: instagram.com/davidbombal LinkedIn: www.linkedin.com/in/davidbombal Facebook: facebook.com/davidbombal.co TikTok: tiktok.com/@davidbombal KZread: kzread.info ================ Connect with John: ================ KZread: kzread.info Twitter: twitter.com/_johnhammond LinkedIn: www.linkedin.com/in/johnhammond010
@reastle1307
2 жыл бұрын
i got exited from only intro
@tsaltslinger3268
2 жыл бұрын
Thank you, Mr Bombal.
@roshantiwaree7617
2 жыл бұрын
David Sir.. I am a student. I want to start my career in cybersecurity specially bug bounty hunting. Please 🥺 suggest me how do I start my journey in cybersecurity. Please 🙏 reply 🥺
@geekmuralin
Жыл бұрын
Thank you
This is GOLD! I cannot thank you enough David and John, you are the best!
These “old” videos are so under utilized by people trying to get into the industry, this one is a GEM. Seeing where the people I look up to were a couple years ago is super inspiring! One of my favorite parts about both of you is your pursuit of learning, thank you for creating!
Thank you so much for covering this. I’m on my own journey of getting into cyber security, and have been growing a big interest in malware analysis. I’ve asked around and no one knew what I was talking about. Was getting really discouraged, thanks!!!
Every time I have a question about something I want to know, you've got a video about it. Thx, bud
My two favorite IT teachers in one video ? Hell yes!! 🔥
@davidbombal
2 жыл бұрын
Thank you Aftab!
Love John Hammond and you as well David!! Thanks so much for the help!!!
David you are the best of best. It is hard to find someone like you, who gives amazing courses for free and all these video tutorials. As a cyber security undergraduate, I'm really thankful to you for all your efforts. Wish you best of luck Dav. ❤️💯
Man, everything I watch some of your stuff, I always end up going down a different rabbithole , inspireing and fun !
Great video and appreciate his presentation. Great to see the way how one has to comb through the script to see the malicious process being executed.
To me,this is a gold mine! Thank you guys for taking time and educate us 👌🏻👍🏻
As a pentester, I would like to see more of malware analysis and blue team stuff.
These guys are pro in their field and they are so humble and down to earth
It's nice to see the new guard. Enjoying your vids, David. Thank you.
Wow David ! really excited with JH series 🥳❤
Its Finally here,Malware Analysis, Thank you David. Would be nice if you released a Full udemy course on Malware analysis
Many thanks to yourself, John and all your guests for providing Insight 🙏🇦🇺
David thank you for raising all valid questions which one or other may get..
Wow, I never see a course cover this topic, thank you David
I really look up to you and John, glad you discussed this :)!!
Hey David. Thanks a ton for this, would request you for more such podcasts
Really useful, thanks. As a teacher trying to find work, it was almost difficult to have something to show to potential employers. But as a security Analyst maybe working towards malware analysis - really interesting that John mentions being so out there in the community actually being useful for job hunting. But then I'd have to be careful of NDA and make sure I don't do anything that might put me at cross purposes with my current employer.
I always disable my adblock and watch the ads on david videos, thanks for the free courses and the amazing content on youtube
Thanks to the universe for 2 good guys like you two. Thanks guys!
Hey David thank you so much for the efforts that you put Big thanks 👍
What I like about you David is that you ask very relevant questions! Keep it up
@davidbombal
2 жыл бұрын
Thank you Akan
John and David, has something special about our future
really cool show im just learning python and studying sec+ atm very interesting and informative, like a newbie can understand such a nice show you two do :)
I've really been wanting/hoping for something such as this! Thank you so much!!!
@davidbombal
2 жыл бұрын
Thank you Samerkia! You're welcome!
That was a fantastic video. Thanks to the both of you for taking the time to share ed that wealth of information to everyone. Thank you again, I never fail to not learn something from your videos.
Great interview, and so much info. Thank you David. I loved the way John broke down the powers hell code in vscode. I find it very useful and smart tip.
Hey David Thanks Man this interview was really very helpful for me i live in india just passed my Diploma in Computer Technology. I am following you since from last 6 months i just watched whole video without skipping anything it influenced me more to learn. Best wishes again David .🔥
Great content, thanks for this collab!
David you have the best content on cyber security by far. There is no one even close! Congratulations
@davidbombal
Жыл бұрын
Thank you! You are very kind to say that 😀
That was great. Thanks David and John.
Shamshing content by Sir David and John. Thank you for sharing this. Superb!
Loved this interview! you both are awesome!
Thanks so much David and John ❤
David, once again, Thanks so much, as always great materialand Thanks and amazing job to John Hammond.
@davidbombal
2 жыл бұрын
Thank you so much for your support Yamit!
We thank you, dear teacher, for your valuable efforts for us
David, your questions were perfect. Actually, those were the questions I would like to ask him, because I see John as an example to me. So, thanks for that. Great job. And John, you're a monster!!!! :)
great job mr.david badly wanted to see collobaration with john...thankz🥰❤🔥
John is a genius, I just love humble attitude.....
What an amazing episode with David and john
Good morning David!! Thank you for all you do!
@davidbombal
2 жыл бұрын
Good morning Jess. Thank you!
There's always great content on this channel. I went from Help desk to Network Admin to Security admin to IT manager from this channel. Thank you for providing these things to us.
@davidbombal
2 жыл бұрын
That's fantastic Theodore! Thank you for sharing 😀
@randyg666
2 жыл бұрын
Nice!!!
I really thanks to both of you with lot of love ❤️❤️
Jhon and David together, that is amazing!!!!!! Big fan of you both also!! The video was amazing. Thank you
@davidbombal
2 жыл бұрын
Thank you Pranava!
Nuff Respect @ David and @John. Thanks for these contents
Well done and thanks for the amazing contents
Very interesting video! John just touched on how to set up a secure environment to investigate malware. A video with more detail on how to set up a secure environment would be of value.
Thanks for this insightful video!
Awating for solar winds analysis , great job 👍❤️
Appreciate ! i have a test for crowdstrike advanced threat internship and info helps me getter the piece together ! great job guys !
great video, you should do more collabs like this.
Hey, David. I take your paid courses on Udemy just for the reason that you're a great community uplifting power. My sincere appreciation for your efforts. Also, your sessions like this are quite enjoyable. Pls do keep them coming.
great content david! kudos to john
Tnx sir I watched full video . You are trying to help more people who r financially down. Great job sir tnx 🙏🙏🙏🙏 Love from Tamil Nadu India 🔥🔥🔥🔥👍👍👍👍🙏🙏🙏
David, thank you for being you!
I would like to have three attributes of John that I really admire: his knowledge, that hair and that great smile
@David Bombal Hi David, thank you very much for sharing all your knowledge with special guests!! It helps us all alot in what we are all trying to learn! ^^ 😀
What I like about David Bombal is that he is here, on KZread, to learn and to teach. I really passionate about cybersecurity and you can really tell that he wants to learn. Respect!
@davidbombal
Жыл бұрын
Thank you! We can all learn from each other :)
David you are great teacher, i follow you from Morocco. You are best and your course very helpful than university.
Wow David incredible stuff, Thank you you are incredible.....and Kudos to Mr. Hammond as well .....
@davidbombal
2 жыл бұрын
Glad you enjoyed it 😀
Great to see two of the very best together, it's a request if you can make a video regarding the latest scenarios and situations about "Dark Web" and all kinds of security and prevention methods to stay safe from "Dark Web", also have seen some videos on KZread about "Paranormal and Creepy" creatures on "Dark Web" so any relevant videos with proper information on whether they are real or not could be very interesting for all to know and explore
Again high level information thanks sir.
So great content ...BEST!!👌👌
David you have a heart of gold!
@davidbombal
2 жыл бұрын
Thank you Jess
Great Thank you David.....
Man I just Love David Collab with such Pros Keep up the good work David 🥳
@davidbombal
2 жыл бұрын
Thank you Divakar
Hi David, love your content. I recently gained my ccna cert, wondering what to do next, I've only installed security cameras thus far which wasn't part of the course.. lol
continue this course David because we need to know about Malwer Analysis also ❤️
@davidbombal
2 жыл бұрын
Thank you
This is great🔥❤️🔥
You did a great job david...fully respect you but can you make a video on creating CTFs
Most waited moment..! ❤
Thank you. you are future of next gen
Still working as of today, ty!
Thank you David
Yay! John is here too
Awesome content just like always
@davidbombal
2 жыл бұрын
Thank you!
Dear David thank you for all the free courses on Udemy. I'm benefiting a lot from these courses.......hoping to repay you back in future LOVE all the way from Sierra Leone...............
Thankyou so much sir 😀
David, just wanted to thank you for everything ,,, i just passed my CCNA exam 2 hrs ago
@davidbombal
2 жыл бұрын
Huge congratulations!! That is great news! Well done
This is Gold!
Hi devid it's great video but I waiting for video for WiFi adaptors increase a TX power use a main three factors 1.domain regularly code for a contry,2.hardware like usb port limitetion milliampere power power usb hub for increasing milliampere power and last 3. With wifi adaptor which type of attack we perform like package injection , vertual mobile towers type of bands we scan! Thank you!
This was a great insight in malware stuff , at least a good content to start with , I would like to thank you both David and John for bringing this to your viewers. However I have one question for both of you here , as john was showing he has collected all those malware samples on his Linux(ubuntu) box , I hope there were no malware detection software like AV, end point security etc. , had that been a case we would have a hard time opening those files in editors and IDEs for analysis, Do you guys agree with me here ? . Since we are not protected in such environment what precaution we should take while doing analysis of these malware samples ? How do we deal with this malware samples in real world environment ? Do we have kind of some isolated environments or sandboxed environment where we analyze these samples ? . if yes , Can you guys pour some light on how to create such environment as a part of one's home lab ?
Good & Awesome, thanks
@davidbombal
2 жыл бұрын
Thank you Fahad!
Awesome mannn. Just amazing
@davidbombal
2 жыл бұрын
Glad you liked it!!
Omg such an important topic david and John great work guys you are just making hacking with a robust approach . David please say thanks to John from me .
@davidbombal
2 жыл бұрын
Thank you Sunil
Subscribed to John...💝
Good learning video
Thank you sir great work very usefull
@davidbombal
2 жыл бұрын
You're welcome Yogesh!
Such a great content
Astounding work *EXELASUPPORT* - so euphoric you are out there battling these failure. We recognize that ought to do all that we can for save the more settled and the overall people from these contemptible mutts! Approval to YOU!! You merit the Nobel prize for safeguarding us epic up family
wow we need more like these
again i wanna say this sir i love you learning alot of things
Good morning David, amazing video
@davidbombal
2 жыл бұрын
Glad you enjoyed it Hasan!
I LOVE John Hammond