From e86280fbd7e12f28ca2e8057b480668d36d44b3b Mon Sep 17 00:00:00 2001 From: hasherezade Date: Thu, 22 Jul 2021 02:32:57 +0200 Subject: [PATCH] Update README.md --- README.md | 39 ++++++++++++++++++++------------------- 1 file changed, 20 insertions(+), 19 deletions(-) diff --git a/README.md b/README.md index f181389..121158b 100644 --- a/README.md +++ b/README.md @@ -34,39 +34,40 @@ If you need help in any of the exercises, or have additional questions, you can ## Covered topics vs planned #### Module 1 + | Slides | Exercises | Topic |------------|------|--- | :heavy_check_mark: | :heavy_check_mark: | compilation | :heavy_check_mark: | :heavy_check_mark: | PE | :heavy_check_mark: | :heavy_check_mark: | Process -| :heavy_check_mark: | :white_check_mark: | WoW64 +| :heavy_check_mark: | :white_medium_square: | WoW64 | :heavy_check_mark: | :heavy_check_mark: | shellcode -| :white_check_mark: | :white_check_mark: | code injection -| :white_check_mark:/ | :white_check_mark:/:heavy_check_mark: | PE loaders +| :white_medium_square: | :white_medium_square: | code injection +| :white_medium_square:/ | :white_medium_square:/:heavy_check_mark: | PE loaders #### Module 2 | Slides | Exercises | Topic |------------|------|--- -| :heavy_check_mark: | :white_check_mark: | Malware missions & tactics (intro) -| :heavy_check_mark: | :white_check_mark: | hooking -| :heavy_check_mark: | :white_check_mark: | persistence -| :white_check_mark: | :white_check_mark: | UAC bypass -| :heavy_check_mark: | :white_check_mark: | Banking trojans -| :white_check_mark: | :white_check_mark: | RATs -| :white_check_mark: | :white_check_mark: | Ransomware -| :white_check_mark: | :white_check_mark: | Lateral movements +| :heavy_check_mark: | :white_medium_square: | Malware missions & tactics (intro) +| :heavy_check_mark: | :white_medium_square: | hooking +| :heavy_check_mark: | :white_medium_square: | persistence +| :white_medium_square: | :white_medium_square: | UAC bypass +| :heavy_check_mark: | :white_medium_square: | Banking trojans +| :white_medium_square: | :white_medium_square: | RATs +| :white_medium_square: | :white_medium_square: | Ransomware +| :white_medium_square: | :white_medium_square: | Lateral movements #### Module 3 | Slides | Exercises | Topic |------------|------|--- -| :heavy_check_mark: | :white_check_mark: | Evasion and self-defence (intro) -| :white_check_mark:/:heavy_check_mark: | :white_check_mark: | Fingerprinting -| :white_check_mark: | :white_check_mark: | String obfuscation -| :white_check_mark: | :white_check_mark: | Imports obfuscation -| :white_check_mark: | :white_check_mark: | Flow obfuscation -| :white_check_mark: | :white_check_mark: | Malware antihooking -| :white_check_mark: | :white_check_mark: | Review of approaches to deobfuscation -| :white_check_mark: | :white_check_mark: | Kernel-mode malware components +| :heavy_check_mark: | :white_medium_square: | Evasion and self-defence (intro) +| :white_medium_square:/:heavy_check_mark: | :white_medium_square: | Fingerprinting +| :white_medium_square: | :white_medium_square: | String obfuscation +| :white_medium_square: | :white_medium_square: | Imports obfuscation +| :white_medium_square: | :white_medium_square: | Flow obfuscation +| :white_medium_square: | :white_medium_square: | Malware antihooking +| :white_medium_square: | :white_medium_square: | Review of approaches to deobfuscation +| :white_medium_square: | :white_medium_square: | Kernel-mode malware components