We took the best from the two introductory classes and combined it with the two advanced Incident Responder and Digital Forensics lab classes to create a 5-day powerhouse course. Students are immersed in YARA, rapidly building rules to classifying files and craft fuzzy logic to heuristically find others that defy easy identification. In an interactive environment, students learn to rapidly identify files and then build profiles of fuzzy logic to overcome obstacles – overcoming the cyptors, packers, protectors and obfuscation that make classification a struggle. Students will use python to automate file classification with existing rules and to create new ones for unknown ones. When a student departs this class they will have practical understanding, confidence and experience to craft YARA rules for any file, in any level of protection against detection.
Course Objectives
Through the user interactive labs the student will learn:
Threat intelligence, incident response, and information security professionals, forensic investigators or others with a requirement to classify and profile files.
Digital Forensic experience suggested.
Threat Intelligence experience suggested.
YARA experience suggested.
Python experience suggested.
Course Duration: 5 Days, 8:30AM-5PM
Category: YARA
Certificate of Completion
Instructor Profile:
Monty St. John has been in the security world for more than two decades. When he is not responding to incidents he teaches classes in Threat Intelligence, Incident Response and Digital Forensics.
About Us:
Technology changes rapidly and requires an ever evolving skill set to keep pace. CDI Academy offers IT and security courses to help you stay ahead of the technology curve. Get trained by certified professionals with experience in the IT Security field through various delivery methods – live & virtual, classroom-style, online at your own pace or webcast with live instruction, or privately at your workplace.
Our IT security courses are developed by industry leaders in numerous fields including cyber security training, network security, forensics, audit, security leadership, and application security. CDI Academy also develops and delivers courses for nontechnical individuals as well as company leaders.
CDI Academy is a division of
Find us on Facebook: