About

About

A 24-year-old Malware Analyst. In addition to knowledge in Digital Forensics, I have some experience in Mobile development using Flutter.

Key highlights :

  • Malware Analysis: Extensive experience in analyzing .NET and C/C++ binaries with IDA-Python and PowerShell.
  • Reverse Engineering: Proficient in reverse engineering malicious drivers and understanding BootKits and UEFI infections.
  • Anti-Analysis Techniques: Solid understanding of anti-analysis techniques and their application.
  • Network and Memory Analysis: Basic knowledge of network PCAP and memory analysis.
  • Android Malware Analysis: Focused on learning and mastering Android malware analysis with the goal of contributing to advanced detection and mitigation strategies.
  • Threat Detection: Developing Config extractors and signature-based detection rules (YARA, Sigma) for effective threat identification.
  • Threat Intelligence: Tracking threat actor groups and staying abreast of emerging security trends.
  • Delphi, Malicious Document and Script Analysis: Basic knowledge of Delphi binary analysis and proficiency in analyzing malicious documents, PDFs, scripts, and Python malware, with a keen interest in expanding expertise in these areas.

Enthusiastic about delving deeper into the world of threat intelligence and contributing to a team that is actively working to stay ahead of the evolving cyber threat landscape.

Technical Skills :

  • Malware Analysis: IDA Pro, WinDbg, x64Dbg, Ghidra
  • Reverse Engineering: Assembly, Debugging (WinDbg, x64Dbg)
  • Scripting and Programming: Python, PowerShell, Lua, C/C++, JavaScript, Dart
  • Network Analysis: Wireshark, TCPdump, Fiddler
  • Digital Forensics: Volatility, FTK Imager, CyLR
  • Threat Intelligence and Hunting: YARA, Sigma, MITRE ATT&CK, MISP
  • Static and Dynamic Analysis: Sandbox environments (ANY.RUN, VirusTotal, Hybrid Analysis)
  • Operating Systems: Windows, Linux
  • Virtualization and Containerization: VMware, VirtualBox, Docker
  • Cryptography: Encryption algorithms, Hash functions

Twitter : @3weSxZero

LinkedIn : Ahmed El-Sayed