Didier Stevens Labs

Founded by Didier Stevens

  • Malicious PDF Analysis Workshop Advance Screening

    This workshop will teach you the fundamentals you need to know to analyze (malicious) PDF documents. Didier Stevens will familiarize you with PDFiD and pdf-parser, two essential tools for PDF analysis he authored. We start with a very simple, PoC malicious PDF file (you could even analyze this PoC file with Notepad or vi) to lay out the fundamentals, and then work through more complex examples.
    More details here

  • White Hat Shellcode Workshop

    In this workshop, we will present shellcode designed to protect systems, in stead of attacking systems. Some examples: shellcode to unload a DLL - shellcode to enable DEP - shellcode to patch a vulnerability – shellcode to test a security setup - shellcode to prevent heap sprays (from my HeapLocker tool).

    More details here.

  • Windows x64 The Essentials Workshop 

    In this workshop, we will touch upon important differences between 32-bit and 64-bit Windows. Some examples: how to develop and inject an x64 DLL - how to develop x64 shellcode - how to develop and sign an x64 kernel driver - how does WoW64 allow us to run 32-bit applications on a 64-bit system?

    More details here.

  • Workshop Bundle

    Get all 3 workshops at a 20% discount.

    More details here.