Inception
Meet Director of GReAT and ninja master Costin Raiu, your tutor for the course, and get an introduction to Yara syntax along with design tips.
X
X
X
X
X
Excluding Cybersecurity for executives online training
“This course taught me how to write YARA rules efficiently and how to make them work faster. Throughout the training I’ve learnt lots of tips and tricks about the creation of YARA rules.”
Course Learner
Use our virtual lab to complete 20+ practical exercises, all based on Kaspersky’s exclusive APT research.
Take your cybersecurity skills to the next level by learning how to identify threats quicker and with less effort.
All levels
$850 $680 inc. tax per learner
Prerequisites
All levels
$850 $680 inc. tax per learner
Prerequisites
“Only our course teaches you how to write solid and fast Yara rules while developing a threat hunting mentality that will be respected & valued.”
Have you ever wondered how Kaspersky’s GReAT experts discovered some of the world’s most famous APT attacks? Now, the answer is within your reach.
Our specialists have poured years of experience from the prominent cases they have worked on into our online Threat Hunting with Yara training. Course leader Costin Raiu, a 25 year veteran of the threat hunting industry, will teach you the unconventional ways of working with Yara so that you can find threats of the same magnitude as his team.
Specifically designed for self-paced learning, our course is deeply practical and enables you to learn-by-doing, hunting for real threats in our dedicated Virtual Lab. Using world-renowned cases like BlueTraveller, Sofacy & WildNeutron as the basis of the course, Costin shares insights and techniques from his team’s exclusive research on these cases. This knowledge will enhance your career and improve your organisation’s threat defences.
Security Researcher
Costin is one of the founders of Kaspersky’s industry leading Global Research and Analysis Team (GReAT), the team that researched the inner workings of Stuxnet, Duqu, Flame, Carbanak, Turla, Lazarus, the Equation Group and many more.
Costin has over 25 years’ experience in cybersecurity and specializes in analyzing Advanced Persistent Threats and high-level malware attacks.
He is a member of the Virus Bulletin Technical Advisory Board and the Computer AntiVirus Researchers’ Organization (CARO) as well as a reporter for the Wildlist Organization International.
Meet Director of GReAT and ninja master Costin Raiu, your tutor for the course, and get an introduction to Yara syntax along with design tips.
Interesting strings and PE structure fields. To hunt down suspicious malware, look for the clues.
A good Yara rule should be able to hunt out the existence of threats while protecting normal files.
What happens when threats become more sophisticated? Luckily, Yara has some modules that can be used to your advantage.
VirusTotal Intelligence (VTI) works natively with Yara. Master these two pieces of software and you might find something that was previously undetected.
Learn about wildcards through exercises featuring the Equation group and Sofacy, some of the most sophisticated cyber espionage groups to have ever existed.
Gets hands-on in the virtual lab with exercises based on WildNeutron, Eye-Pyramid and other famous cases.
Find out how you can dump OLE files to identify features that can be then be used for Yara detection.
Search for suspicious techniques and write effective Yara rules based on the Freaky Shelly case, Lazarus / Bluenoroff and other advanced cases.
Complete your training by finding out how you can use automatic Yara generators, how you can set up a Yara environment within your own organization and how you can hunt threats when you even don’t know what you are looking for.
InfoSec professionals
IT Security professionals will learn how to advance their career as a threat hunter and hunt threats more efficiently.
Enterprises
Train your teams to find new malware samples, exploits and zero-days and speed up incident response. Improve your organizations’ defenses with custom rule
Video lectures featuring Costin Raiu
Learn from a 25 year Threat Hunting ninja and Director of Kaspersky’s industry leading Global Research and Analysis Team.
Active learning
Engaging learning tools & quizzes to support effective knowledge transfer.
Hands-on virtual lab
Work with real cases like BlueTraveller and DiplomaticDuck in our virtual lab.
6 months to complete your course from activation of your access code
Courses delivered in English with subtitles
Self-guided learning that fits around your life
It will take you approximately 15 hours to finish the course
PDF downloads of training materials & tips
Browser-based via desktop, mobile & tablet (excludes virtual lab which requires an RDP client)
Costin Raiu, Director of GReAT, Kaspersky
Over 50 videos to guide you through the course
100 hours of virtual lab time for hands-on learning
PDF document on a Kaspersky letterhead certifying the completion of the course, signed by the course leader(s)
Threat hunting
Stay ahead of the game with the latest tips, tricks and techniques for creating and implementing Suricata rules for malware detection and threat research.
Threat hunting
Master the skills to implement security monitoring processes and key security operations to effectively detect and investigate malicious activity and threat hunting.
Each and every month we share our latest news, tips, tricks and advice on all things cybersecurity related.
Be the first to find out when we run competitions, promotions, launch new courses, release free webinars and much more!