Education Services

From the Front Lines to the Front of the Classroom

In today’s threat landscape, the tools, techniques and procedures (TTPs) of attackers continuously evolve. To keep pace with attackers, security experts must invest time and effort in continuing education.

From the Front Lines to the Front of the Classroom

Overview

Mandiant offers a variety of courses as part of our mission to share what we know with the security professionals who need it most. We equip Fortune 500 executives, law enforcement officials and independent security consultants with the knowledge and skill they need to face the latest cyber threats. Courses are available for security professionals at all levels, from beginner to expert.

All courses are taught by experts with hundreds, or even thousands of hours of first-hand experience responding to and defending against aggressive and sophisticated cyber crimes. In fact, much of the material for exercises and operational scenarios are based on actual security incidents for maximum impact.

Upcoming courses

Enterprise Incident Response
July 22-23 or July 24-25
Black Hat USA 2017

Attacks against computer systems continue to increase in frequency and sophistication. In order to effectively defend data and intellectual property, organizations must have the ability to rapidly detect and respond to threats. This intensive two-day course is designed to teach the fundamental investigative techniques needed to respond to today's landscape of threat actors and intrusion scenarios. Completely redeveloped with all new material in 2016, the class is built upon a series of hands-on labs that highlight the phases of a targeted attack, key sources of evidence, and the forensic analysis know-how required to analyze them. Students will learn how to conduct rapid triage on a system to determine if it is compromised, uncover evidence of initial attack vectors, recognize persistence mechanisms, develop indicators of compromise to further scope an incident, and much more.

Malware Analysis Crash Course
July 22-23 or July 24-25
Black Hat USA 2017

This course provides a rapid introduction to the tools and methodologies used to perform malware analysis on executables found on Windows systems using a practical, hands-on approach. Students will learn how to find the functionality of a program by analyzing disassembly and by watching how it modifies a system and its resources as it runs in a debugger. Students will learn how to extract host and network-based indicators from a malicious program. Students will be taught about dynamic analysis and the Windows APIs most often used by malware authors. Each section is filled with in-class demonstrations and hands-on labs with real malware where the students practice what they have learned.

OS X Malware Analysis Crash Course
July 22-23 or July 24-25
Black Hat USA 2017

Most malware analysts and incident responders aren't able to dissect OS X malware. And with the usage of Apple Macintosh computers growing across the enterprise they need to be prepared to deal with current and future threats. With that corporate increase comes an increase in attacks. Will you be prepared to analyze malware and threats targeted for OS X when they come your way?

This Crash Course rapidly introduces the tools and methodologies necessary to get you analyzing malware that targets the OS X platform. We use a practical, hands-on approach to quickly adapt your current malware analysis skills for OS X.

Private courses

We offer private courses for groups of 10-20 students. For more information, please email us at education@mandiant.com.