Certification Programmes

MCSI Certification

MRE - Certified Reverse Engineer

An MCSI qualified professional Reverse Engineer is capable of performing static, dynamic and behavioral analysis against complex and modern malware.

Students who have successfully achieved their MRE Certification from MCSI can apply for Malware Analyst jobs worldwide with the confidence that they have the competencies the industry is seeking.

Register Now Course Overview
Intermediate Level MCSI Certification Intermediate
ic-certificate Certification
ic-clock 600+ hours
cpe-points 227
ic-money US$450
No Expiry, No Renewals

Overview

MCSI Certifications are world-class. The content is cutting-edge, uniquely-designed, hands-on and challenging. Our exercises teach in-demand skills that are immediately applicable in the field. MCSI's unique approach helps students around the world advance their careers.

This Certification has no expiry date. It has no renewal fees, no hidden fees, and is accessible with no time limits.

MCSI Certified Reverse Engineer:

  • Employ a systematic approach to malware analysis
  • Perform static, dynamic and behavioral analysis
  • Deobfuscate protected malware samples
  • Manually decompile binaries back to C code
  • Produce descriptions of how APT samples work
  • Develop high-fidelity indicators of compromise (IOCs)

Curriculum

Training Modules

  • Lab Setup - 4 exercises
  • Fundamentals, Concepts, and Theory - 4 exercises
  • Programming for Reverse Engineering - 5 exercises
  • Windows Internals for Reverse Engineering - 7 exercises
  • Binary Classification - 10 exercises
  • Behavioral Analysis - 5 exercises
  • Memory Forensics for Malware Analysis - 6 exercises
  • Ghidra - 8 exercises
  • Malware in Documents - 2 exercises
  • Static Code Analysis - 11 exercises
  • Dynamic Code Analysis - 8 exercises
  • Symbolic Execution and Binary Emulation - 3 exercises
  • Manual Decompilation - 4 exercises
  • Code Deobfuscation - 13 exercises
  • Advanced Memory Forensics - 3 exercises

Scenarios

  • Systematic Code Analysis - 5 exercises
  • Systematic Approach to Malware Analysis - 7 exercises

Sample Exercises

Below are three (3) exercises from the 100+ exercises available in MRE - Certified Reverse Engineer:

Decompile A Malicious Java Executable (Novice)

exercise


Defeat The Software Breakpoint Detection Anti-Debugging Technique (Advanced Beginner)

exercise


Perform A Manual Decompilation Of The BIRDDOG Malware (Competent)

exercise

Enrolment and Fees

Fees

US$450 (+ GST if you're based in Australia).

Practical exercises must be completed online using MCSI's Online Learning Platform.

How to enrol

  1. Login/Register for MCSI's Online Learning Platform
  2. Select `Shop` from the left-side menu
  3. Find the MRE - Certified Reverse Engineer, select `Buy` and proceed through the checkout process. You can purchase using a Credit Card or PayPal
  4. Once you have enrolled in the MRE - Certified Reverse Engineer, the curriculum unlocks immediately
  5. In the left-side menu of the platform, select `Training & Education` then `MCSI Curriculums`, and you will see the MRE - Certified Reverse Engineer listed
Register Now

Terms and Conditions

  • No discounts
  • No refunds
  • No transfers
  • No renewal fees
  • No hidden fees
  • No time limits

Cooling-Off Policy

Receive a full refund if you change your mind about a purchase within 24 hours. No questions asked.

Read the full details here.

Requirements

Proficiency in the English language

Ability to comfortably read and understand IT documentation written in English. Ideally, an IELTS score of 6.5 with no band less than 6 (or equivalent).

Note: You can register for this course without having undertaken an English test.

Programming Skills

We recommend that you have some experience in software programming prior to registering for this course.

The preferred programming languages for this course include: Assembly, Python and C.

Frequently Asked Questions

What is the MCSI Method™?

Common Questions

  • Are solutions included in certifications and bundles?
    • No. Our method of teaching cyber security consists of challenging you with real-world problem statements that you're expected to research and solve by doing your own research. This is how you'll be expected to work in the field. When you fail an exercise, we provide you with constructive feedback to improve and try again.
  • Do the videos provides the answers to exercises?
    • No. The videos teach concepts, mindset, methodologies, procedures and professional skills such as report writing, interviewing and preparing proposals.
  • Do bundles, training content, or certificates ever expire? Am I expected to buy again in the future?
    • Once purchased, bundles and certificates are unlocked forever. They are no recurring or ongoing fees.
  • Do I need to buy the training and the certification separately?
    • No. The price provided covers both. You only pay once.
  • Do you offer any special offers and discounts?
    • No.
  • If I can't solve the exercise where do I go for help?
  • Who reviews and marks exercises?
    • Trained cyber security instructors that work for Mossé Cyber Security Institute.
  • We can't pay via credit card. Can you raise an invoice for international wire payment instead?
    • Yes. Send us the list of bundles and certifications you want to purchase at l[email protected]
  • Can I access a trial/demo the certification programmes prior to enrolling?
    • We provide a free curriculum with 82 practical exercises you can try.
    • The Free Curriculum teaches Security Tools, Penetration Testing, Red Teaming, Threat Hunting, Cyber Defence, GRC and Windows Internals.
    • Try the Free Curriculum
  • What is an `Unofficial Curriculum`?
    • An `Unofficial Curriculum` contains MCSI's practical exercises aligned to a non-MCSI Industry Certification syllabus.
    • We offer unofficial curriculums for the OSCP, ISACA CISA, ISACA CISM, ISACA CRISC, CCT ICE, CCSAS, CCT ACE.
  • Do you provide Continuing Professional Education (CPE) credits?
    • Yes. Every single exercise offers CPE credits. The number of credits earned depends on the difficulty of the exercise completed. Below are the CPE Credits achieve for an exercise in each difficulty:
    • Novice exercises = 1 CPE credits
    • Advanced Beginner exercises = 2 CPE credits
    • Competent exercises = 5 CPE credits
    • Proficient exercises= 8 CPE credits
    • Beyond Proficient exercises = 16 CPE credits
  • Are MCSI courses/certifications recognized and have value outside of Australia?
    • Yes. MCSI certifications have value worldwide and are recognized by employers looking for individuals with practical cyber security skills.
    • MCSI's training is 100% practical with real cybersecurity problems designed to teach immediately applicable skills in the field. To solve our practical exercises, students must do their own research and develop their own solutions.
    • While completing exercises, students also develop their own comprehensive cybersecurity portfolio of skills. Individuals use this portfolio to demonstrate their cybersecurity competencies to solve real industry problems to future employers or hiring managers.
  • Do I need to complete an exam to receive MCSI Certification?
    • No. MCSI Certifications are completed by solving practical cybersecurity exercises.

Career Outcomes

This certification successfully prepares you for the following roles:

  • Cyber Defender
  • Incident Responder
  • Malware Analyst
Certification Detail

Training Curriculum and Certifications

Students unlock Certificates of Completion for every exercise they complete. Industry Certifications are unlocked upon achieving Skills Proficiency Milestones.

1
ic-step-1

Student

2
ic-step-2

Obtain CPE points by solving exercises

3
ic-step-3

Achieve multiple certifications

4
ic-step-4

Receive help from instructors online

MCSI's MRE certification covers all six levels of the Australian Signals Directorate's Cyber Skills Framework. You will achieve a certificate upon reaching each level. You will earn an industry certification at Level 5. Click here to learn more.

ASD Skills Proficiency Level Curriculum Completion Requirement Scenarios Completion Requirement
MCSI Reverse Engineering Learner Level 1 0% 0%
MCSI Novice Reverse Engineer Level 2 20% 0%
MCSI Reverse Engineering Practitioner Level 3 50% 10%
MCSI Senior Reverse Engineering Practitioner Level 4 70% 30%
MCSI Certified Principal Reverse Engineer Practitioner Level 5 80% 50%
MCSI Certified Expert Reverse Engineering Practitioner Level 6 95% 75%

As an MCSI Certified Reverse Engineer you will be fully capable of performing the following:

  • Employing a systematic approach to malware analysis
  • Binary Classification
    • PE format
    • Binary decomposition
    • Classifying executables based on PE properties
    • Developing YARA rules to detect known samples
    • Writing scripts to parse PE files
  • Behavioral Analysis
    • Sysmon
    • Sandboxing
    • Network simulations
  • Memory Forensics
    • Volatility Framework
    • Windows registry
    • Processes and DLLs
    • Process memory
    • Kernel objects
    • Networking
    • GUI
    • Code injection
    • YARA rules
  • Static Analysis
    • Mastering Ghidra
    • Automated and manual decompilation
    • Annotation, bookmarks, references
    • Analysing different types of PEs
    • Decrypting data and binaries
    • Programming to assist static analysis
  • Dynamic Analysis
    • Monitoring APIs
    • Defeating anti-debug techniques
    • Dynamically unpacking malware
    • Symbolic execution and emulation
    • Kernel-mode debugging
    • Programming to assist dynamic analysis
  • Basic Code Deobfuscation Techniques
    • Control Flow Flattening
    • Opaque Predicates
    • Mixed Boolean Arithmetic
    • Strings and Code Encryption
    • Instruction substitution
    • Abusing Windows APIs
  • Analyse Ransomware, Remote Access Tools (RATs) and APT toolkits with user and kernel mode components

Testimonials

Why MCSI’s Reverse Engineering Certification is World Class

why MCSI certifications

Comprehensive, Effective, Exceeds Standards

Holders of the MRE Certification have completed 100 practical online exercises thus demonstrating that they have the skills and knowledge in the following areas: binary classification, static analysis, dynamic analysis, behavioral analysis, memory forensics and code deobfuscation.

why MCSI certifications

Internals Focused

Students who have obtained this Certification have demonstrated that they have a full understanding of the Windows operating system's internals for digital forensics, incident response and malware analysis purposes.

why MCSI certifications

Practical, Field-Based

Students must reverse engineer 20 malware samples. Many of which are APT toolkits discovered in the wild.

DO YOU HAVE A QUESTION?

We'll respond within 24 hours

Visit our Frequently Asked Questions (FAQ) page for answers to the most common questions we receive.

Ready to learn hands-on cyber security skills online?

Register Now