Get an iPad mini, ASUS ZenScreen LED Monitor, or $350 Off with OnDemand Training thru 5/19

Los Angeles - Long Beach 2017

Long Beach, CA | Mon, Jul 10 - Sat, Jul 15, 2017
This event is over,
but there are more training opportunities.

Tools and Techniques for Assessing Suspected Android Malware

  • Chris Crowley
  • Monday, July 10th, 7:15pm - 8:15pm

Android malware is substantially more common that iOS malware. Android users can choose to enable the "Unknown sources - Allow installation of apps from unknown sources" and install applications from anywhere.

In this talk Christopher Crowley will show tools and techniques you can use to inspect Android applications to determine if they exhibit malicious behavior. This can be employed as forensic analysis and can also be used in application assessments to determine if an application is suitable for use within an organization. He will discuss a sequence of actions and assessments to perform in order from easiest to complex, to help attendees to develop a methodology for performing analysis.

We'll look at behavioral analysis, static code analysis, and application manipulation (rewriting APKs for modified functionality) as the general techniques of analyzing the Android applications.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Vendor: Events hosted by external vendor exhibitors.
  • Lunch & Learn: Short presentations given during the lunch break.
  • Master's Degree Presentation: Presentations given by SANS Technology Institute's Master's Degree candidates.
Monday, July 10
Session Speaker Time Type
General Session - Welcome to SANS G. Mark Hardy Monday, July 10th, 8:00am - 8:30am Special Events
Tools and Techniques for Assessing Suspected Android Malware Chris Crowley Monday, July 10th, 7:15pm - 8:15pm Keynote
Tuesday, July 11
Session Speaker Time Type
Vendor Showcase Tuesday, July 11th, 10:30am - 10:50am Vendor Event
Vendor Showcase Tuesday, July 11th, 12:15pm - 1:30pm Vendor Event
Cisco Umbrella - Your First Line of Defense Against Ransomware and Malware Robert McLean, Consulting Systems Engineer Tuesday, July 11th, 12:30pm - 1:15pm Lunch and Learn
Vendor Showcase Tuesday, July 11th, 3:00pm - 3:20pm Vendor Event
Anti-Ransomware: How to Turn the Tables G. Mark Hardy Tuesday, July 11th, 7:15pm - 8:15pm SANS@Night
Wednesday, July 12
Session Speaker Time Type
The Red Pill. Become Aware: Squashing Security Misconceptions and More. My-Ngoc Nguyen Wednesday, July 12th, 7:15pm - 9:15pm SANS@Night
Thursday, July 13
Session Speaker Time Type
Dissect the Phish to Hunt Infections Seth Polley- Master's Degree Candidate Thursday, July 13th, 7:15pm - 7:55pm Master's Degree Presentation