GIAC Malware Analysis Certification: GREM

GIAC Malware Analysis Certification: GREM

The GIAC Reverse Engineering Malware (GREM) certification is designed for technologists who protect the organization from malicious code. GREM-certified technologists possess the knowledge and skills to reverse-engineer malicious software (malware) that targets common platforms, such as Microsoft Windows and web browsers. These individuals know how to examine inner-workings of malware in the context of forensic investigations, incident response, and Windows system administration.

Reasons to Become GREM Certified:

  • Become more valuable to your employer and/or customers by highlighting your cutting-edge malware analysis skills through the GREM certification
  • Motivate yourself to develop a new skill set by reaching for a concrete, measurable, and achievable goal embodied by the GREM certification
  • Join the ranks of highly-respected professionals who possess the knowledge and skills that are relatively rare in the industry
  • Reinforce and affirm your ability to understand characteristics of real-world malware, so you can better respond to incidents and reinforce defenses

Certified Skills that GREM Certified Professionals Possess

  • Assemble the toolkit for malware forensics
  • Perform behavioral analysis of malicious Windows executables
  • Perform static and dynamic code analysis of Malicious Windows executables
  • Intercept system and network-level activities in the analysis lab
  • Patch compiled malicious Windows executables
  • Shortcuts for speeding up malware analysis
  • Core concepts for reverse-engineering malware at the code level
  • x86 Intel assembly language understanding
  • Identify key x86 assembly logic structures with a disassembler
  • Patterns of common malware characteristics at the Windows API level
  • Work with PE headers of malicious Windows executables
  • Handle DLL interactions and API hooking
  • Manual unpacking of protected malicious Windows executables
  • Capability to subvert anti-analysis mechanisms built into malware
  • Analyze protected malicious browser scripts written in JavaScript and VBScript
  • Reverse-engineer malicious Flash programs
  • Analyze malicious Microsoft Office (Word, Excel, PowerPoint) and Adobe PDF documents
  • Examine shellcode in the context of malicious files
  • Analyze memory to assess malware characteristics and reconstruct infection artifacts
  • Use memory forensics to analyze rootkit infections
Network Security 2017 - Las Vegas
Latest Blog Posts

Understanding EXT4 (Part 6): Directories
June 07, 2017 - 6:31 PM

Beats and Bytes – Striking the Right Chord in Digital Forensics
May 22, 2017 - 8:10 PM

Three Steps to Communicate Threat Intelligence to Executives.
May 22, 2017 - 7:59 PM

Latest Tweets @sansforensics

Two weeks till FOR585 #SANSvLive #SmartphoneForensics @Heath [...]
June 25, 2017 - 11:10 PM

Best Mac class anywhere."Eric Koebelen, #IncidentResponse #F [...]
June 25, 2017 - 10:35 PM

Find out what's new in #SmartphoneForensics w/ a webcast fro [...]
June 25, 2017 - 9:10 PM

Latest Papers

The Importance of Business Information in Cyber Threat Intelligence (CTI), the information required and how to collect it
By Deepak Bellani

Detection of Backdating the System Clock in Windows
By Xiaoxi Fan

Tor Browser Artifacts in Windows 10
By Aron Warren

"This course is filling in the blanks in my knowledge of how some things work. It is nice to know what the tools are doing."
- Douglas Couch, Purdue University

"I had taken several other forensic courses prior to this one, but none of them or their instructors made understanding forensic methodologies and techniques as clear and understandable as Rob Lee and this course has."
- Nathon Heck, Purdue

"Rob Lee is a master of the subject matter. The material is presented in a way that is understandable. Rob is also charismatic enough to make the course enjoyable."
- Erik Ketlet, JP Morgan Chase