TWC: Malware Hunting with Mark Russinovich and the Sysinternals Tools

Sign in to queue

Description

Mark provides an overview of several Sysinternals tools, including Process Monitor, Process Explorer, and Autoruns, focusing on the features useful for malware analysis and removal. These utilities enable deep inspection and control of processes, file system and registry activity, and autostart execution points. He demonstrates their malware-hunting capabilities by presenting several current, real-world malware samples and using the tools to identify and clean malware.
For more information, check out this course on Microsoft Virtual Academy:

Day:

4

Session Type:

Breakout

Code:

DCIM-B368

Room:

Grand Ballrm C

Embed

Download

Download this episode

For more information, check out this course on Microsoft Virtual Academy:

The Discussion

Add Your 2 Cents