Individuals who have successfully achieved their MCD Certification can defeat code-level obfuscation techniques employed by APTs such as Control Flow Flattening, Opaque Predicates, and Virtual Machines.
This Certification is aimed at malware analysts that want to develop code deobfuscation capabilities to join advanced reverse engineering teams.
MCSI Certifications are world-class. The content is cutting-edge, uniquely-designed, hands-on and challenging. Our exercises teach in-demand skills that are immediately applicable in the field. MCSI's unique approach helps students around the world advance their careers.
This Certification has no expiry date. It has no renewal fees, no hidden fees, and is accessible with no time limits.
MCSI Certified Code Deobfuscation Specialist:
Defeat code-level obfuscation techniques to recover the original high-level code
Recover protected data such as IP addresses, domain names, keys and other strings
Recover the original malware architecture prior to its obfuscated state
Produce high-fidelity descriptions of what protected software code does
This Certification focuses 100% on teaching code deobfuscation techniques employed by Advanced Persistent Threats (APTs).
Lab Setup - 4 exercises
Key Concepts - 3 exercises
Ghidra Fundamentals - 9 exercises
Code Obfuscation Fundamental Techniques - 13 exercises
Are solutions included in certifications and bundles?
No. Our method of teaching cyber security consists of challenging you with real-world problem statements that you're expected to research and solve by doing your own research. This is how you'll be expected to work in the field. When you fail an exercise, we provide you with constructive feedback to improve and try again.
Do the videos provides the answers to exercises?
No. The videos teach concepts, mindset, methodologies, procedures and professional skills such as report writing, interviewing and preparing proposals.
Do bundles, training content, or certificates ever expire? Am I expected to buy again in the future?
Once purchased, bundles and certificates are unlocked forever. They are no recurring or ongoing fees.
Do I need to buy the training and the certification separately?
No. The price provided covers both. You only pay once.
Do you offer any special offers and discounts?
If I can't solve the exercise where do I go for help?
We have an online forum where you can ask questions and our team of professional instructors will help you out.
An `Unofficial Curriculum` contains MCSI's practical exercises aligned to a non-MCSI Industry Certification syllabus.
We offer unofficial curriculums for the OSCP, ISACA CISA, ISACA CISM, ISACA CRISC, CCT ICE, CCSAS, CCT ACE.
Do you provide Continuing Professional Education (CPE) credits?
Yes. Every single exercise offers CPE credits. The number of credits earned depends on the difficulty of the exercise completed. Below are the CPE Credits achieve for an exercise in each difficulty:
Novice exercises = 1 CPE credits
Advanced Beginner exercises = 2 CPE credits
Competent exercises = 5 CPE credits
Proficient exercises= 8 CPE credits
Beyond Proficient exercises = 16 CPE credits
Are MCSI courses/certifications recognized and have value outside of Australia?
Yes. MCSI certifications have value worldwide and are recognized by employers looking for individuals with practical cyber security skills.
MCSI's training is 100% practical with real cybersecurity problems designed to teach immediately applicable skills in the field. To solve our practical exercises, students must do their own research and develop their own solutions.
While completing exercises, students also develop their own comprehensive cybersecurity portfolio of skills. Individuals use this portfolio to demonstrate their cybersecurity competencies to solve real industry problems to future employers or hiring managers.
Do I need to complete an exam to receive MCSI Certification?
No. MCSI Certifications are completed by solving practical cybersecurity exercises.
This certification successfully prepares you for the following
Senior Malware Analyst
Training Curriculum and Certifications
Students unlock Certificates of Completion for every exercise they complete. Industry Certifications are unlocked upon achieving Skills Proficiency Milestones.
Obtain CPE points by solving exercises
Achieve multiple certifications
Receive help from instructors online
MCSI's MCD certification covers all six levels of the Australian Signals Directorate's Cyber Skills Framework. You will achieve a certificate upon reaching each level. You will earn an industry certification at Level 5. Click here to learn more.
ASD Skills Proficiency Level
Curriculum Completion Requirement
Scenarios Completion Requirement
MCSI Code Deobfuscation Learner
MCSI Novice Code Deobfuscation Practitioner
MCSI Code Deobfuscation Practitioner
MCSI Senior Code Deobfuscation Practitioner
MCSI Certified Principal Code Deobfuscation Practitioner
As an MCSI Certified Code Deobfuscation Specialist you will be fully capable of performing the following:
Apply and remove the following obfuscation techniques
Control Flow Flattening
Function argument randomisation
Merging and Splitting Functions
Mixed Boolean Arithmetics
Split and Merge Variables
Virtual Machine Hardening
Develop automated solutions for program analysis
Writing custom disassemblers to recover virtualised instructions
Developing Ghidra extensions to identify and remove code protections
Patching and rewriting binaries
Decrypting and decoding protected data
Produce high-fidelity descriptions of obfuscated executable code
Recover indicators of compromise protected with encryption and/or encoding
Deobfuscate and recover protected code that can later be recompiled into a clean state
Why MCSI’s Code Deobfuscation Certification is World Class
Comprehensive, Effective, Exceeds Standards
Holders of the MCD Certification have completed 100 practical online exercises thus demonstrating that they have the skills and knowledge in the following areas: code protection analysis, code deobfuscation, program analysis, and program decompilation.
Students who have obtained this Certification have demonstrated that they have a full understanding of code protection techniques because they have first implemented and defeated them by hand and then developed automated solutions to deal with real-life APT samples.
Students who have obtained MCD have demonstrated that they can deobfuscate APT malware samples protected with techniques such as Control Flow Flattening, Opaque Predicates and Virtualisation.