Malware Analysis
Perform malware analysis on samples utilizing real-world techniques, assessing techniques and evasion methods, to assist in threat detection efforts.
NOTE - This certification is still under development. Anticipating end of Q1 to early Q2 release. Join the waitlist and stay tuned!
DE1 Certification
This is a chance for you to prove your mettle in a practical gauntlet of Detection Engineering, Malware Analysis, and Attack Emulation. Examinees will be expected to execute full-spectrum detection engineering operations and produce professional reports on analysis, emulations, and detections.
Examinees that pass this examination have demonstrated the ability and knowledge to integrate into a threat detection engineering program - and possess a skill set highly applicable to any security operation function.
Entirely Practical. No Multiple Choice.
We don’t believe in multiple choice exams. Prove you know what you’re doing in a multi-faceted exam made to assess your ability to integrate into a team. Reports are reviewed by a seasoned professional that knows what it takes.
Custom, Real-World Malware
Our custom malware samples utilize techniques that can be seen in the wild. These aren’t one off “gotchas” in an attempt to make you fail the exam.
Manually Graded by the Exam Authors with Feedback
Each report is reviewed and assessed by instructors of the program who provide feedback designed to ensure takers know where they can improve regardless of the attempt outcome.
Challenges Required for DE1 Certification
Attack Emulation
Emulate attack techniques on a system to generate logs for analysis, enabling rapid-response detection engineering when a proof of concept isn’t available.
Detection Engineering
Perform full-cycle detection engineering, including creation, testing, documentation, CI/CD pipelines, and more to truly structure your work.
Frequently Asked Questions
-
What do I get when I pass?
A big pat on the back, oh and a digital badge. This badge can be utilized to prove to your family, friends, coworkers, bosses, and future employers that you know what you’re doing.
-
How much time do I have to finish the exam?
You will have 7 days to finish your exam (24 hours total lab time).
-
How do I prepare?
Take the Detection Engineering 100 course, including working on the associated labs.
-
How is the exam graded?
All reports are reviewed by the course author. The exam will be graded as follows:
-
An “Expectations” document will be given prior to your exam start time. This document will outline mandatory items and specify the level of thoroughness required for the exam work and report.
-
Failure to include mandatory items will result in an immediate failed attempt.
-
-
How many attempts do I get?
Courses and exam bundles come with a single exam attempt. If you need to attempt the exam again, your single exam purchase will come with a third attempt.
Interested in hearing more?
Get on the waitlist to find out more information as this certification develops and gets ready for release!
Waitlist Registration