Press Releases

MANDIANT, an elite provider of incident response management services and solutions, announced today that the company will conduct a training session, present and host a party at Black Hat USA 2007 in Las Vegas.

MANDIANT experts Jerry Pierce, Ken Bradley and Kris Harms will conduct a two-day training session “Incident Response BlackHat Edition” on July 28-29 and 30-31, 2007. Through the use of case studies and hands-on lab exercises, attendees of MANDIANT’s session will learn the different phases and activities of the incident response process; the roles and responsibilities of an incident response team; how to create incident response and notification check lists; and how to perform live responses on compromised Windows and Unix servers. To register for this course, visit http://www.blackhat.com/html/bh-usa-07/train-bh-us-07-md-ir.html
Nick Harbour, Bret Padres and Kris Kendall will teach a two-day training session “Malware Analysis: BlackHat Edition” on July 28-29 and 30-31, 2007. This course provides an introduction to the tools and methodologies used to perform dynamic and static analysis on portable executable programs found on Windows systems. To register for this course, visit http://www.blackhat.com/html/bh-usa-07/train-bh-us-07-md-mal.html

Jamie Butler, Principal Software Engineer at MANDIANT, will present the session “Blackout: What Really Happened…” on August 1st from 3:15 to 4:30 p.m. PT. His session will discuss code injection techniques that malicious software authors use to avoid detection, bypass host-level security controls, thwart the efforts of human analysts, and make traditional memory forensics ineffective. Butler has a decade of experience researching offensive security technologies and developing detection algorithms. He is the co-author and teacher of "Offensive Aspects of Rootkit Technologies" and "Advanced Second Generation Digital Weaponry." Butler is also co-author of the bestseller, "Rootkits: Subverting the Windows Kernel."

Nick Harbour, Senior Consultant at MANDIANT, will present the session “Stealth Secrets of the Malware Ninjas” on August 2nd from 11:15 to 12:30 p.m. PT. Harbour’s presentation will focus on the anti-forensic techniques which malware authors incorporate into their malicious code, as opposed to relying solely on an external rootkit. In addition to describing a number of known but scarcely documented techniques, this presentation will describe techniques which have never been observed through the presenter’s experience with incident response and malware reverse engineering. This presentation will serve as an eye-opening overview of malware anti-forensic techniques, providing a limited introduction to forensic analysis. Harbour specializes in both offensive and defensive research and development as well as reverse engineering, incident response and computer forensics.

MANDIANT will also be hosting a party at Caesars Palace on Wednesday, August 1. For more information or an invitation to the event, please contact Anne Mroczynski at anne.mroczynski@mandiant.com or 703-683-3141.

Black Hat USA 2007 will be held July 28 – August 2, 2007, at Caesars Palace in Las Vegas. For more information on this event, visit: http://www.blackhat.com/html/bh-usa-07/bh-usa-07-index.html