Windows Rootkit Reverse Engineering

This course takes students into advanced and specialist topics surrounding rootkit analysis. Students will learn about the Windows kernel, automated and manual unpacking, live kernel debugging with IDA and WinDbg, and reverse engineering drivers. This is a heavily lab-intensive course that requires students to have a solid background in programming, reverse engineering, and malware analysis prior to attending.

Length: 5 Days

Get Practical Experience That Well Over 95% Of Windows Rootkit Reverse Engineering Job Openings Require.

Our training doesn’t consist of a set of video lectures followed by unguided work assignments, as is the case with all other Windows Rootkit Reverse Engineering training programs. 

Instead, our proprietary Artificial Intelligence-based training platform delivers you bite-sized knowledge that is immediately followed by hands-on exercises, during which the platform watches your every step and helps you with contextual help, hints, and templates, as needed; and you have a personal tutor and coach who help you every step of the way.

Learning Objectives

  • After successfully completing this course, students will be able to:

    • Unpack malware using both automated tools and manual processes
    • Analyze and defeat mechanisms added by code protectors
    • Conduct live remote kernel debugging on Windows using WinDbg and IDA
    • Reverse engineer rootkits that are implemented as drivers


    • Successful completion of Malware Reverse Engineering
    • Strong programming and reverse engineering experience
    • Comprehensive understanding of Windows OS internals

    Capstone Exercise

    Learners will be required to:

    • Fully analyze and report on a real-world Windows rootkit

      Different Learning Styles Require Different Delivery

      One size never fits all when it comes to individual learning and training.  Our Student Navigators are trained to effectively assess your overall training goals and map them to the best courses and delivery formats to meet your objectives, as well as your personal learning style.

      Virtual Online Live Training


      Our Virtual Instructor Led classes allow you to interact with a live instructor, as well as your peers in class – all from the comfort of home or your office. 

      We utilize leading edge enterprise videoconferencing technology with breakout rooms and more!

      Instructor Led Training


      The statistics prove that successful learning, retention and certification most often results from instructor-led training. 

      We have award-winning instructors and nothing beats sitting in class with them live and in person!  Com and join us in person today!

      On Demand Training


      In need complete flexibility and access 24 hours a day?  We offer online classes that you can view at your leisure, all taught by our award-winning instructor team!

      Our On Demand resources are premier studio quality classes with consistent updated course content!

      Client Testimonials

      Be wary of companies that pay external vendors to farm and post reviews, many of them are not authentic. Ours come straight from Google, you can’t alter reviews on Google Maps in any way. Don’t take our word for who we are – hear from our clients:

      5 Star Reviews

      Looking for Windows Rootkit Reverse Engineering Training Program?

      We welcome the opportunity to talk through your individual training needs, or that of your team. Please reach out to us with any questions you might have.  And no, we will not relentlessly hound you with sales calls, we promise!  We are a no pressure, service oriented company.

      Reach out – you’ll be glad you did!