Connect with us on Facebook and Linkedin

Training: Accelerated Windows Memory Dump Analysis

We resume our flagship training course with the new version 4!

Learn how to analyze application, service and system crashes and freezes, navigate through memory dump space and diagnose heap corruption, memory leaks, CPU spikes, blocked threads, deadlocks, wait chains, and much more. We use a unique and innovative pattern-oriented analysis approach to speed up the learning curve. The training consists of more than 28 practical step-by-step exercises using WinDbg highlighting more than 60 patterns diagnosed in 32-bit and 64-bit process, kernel, complete (physical), and active memory dumps.

This new training version is updated for Windows 10 x64 and WinDbg 10. It also includes fully reworked modeling examples and memory analysis patterns introduced since the previous training versions.

Training Slides

If you are registered, you are allowed to optionally submit your memory dumps before and during the training. This will allow us in addition to the carefully constructed problems tailor extra examples to the needs of the attendees.

The training consists of 4 two-hour sessions (2 hours every day). When you finish the training you additionally get:

  1. A full transcript in PDF format with more than 100 questions and answers (retail price $300)
  2. 9 volumes of Memory Dump Analysis Anthology in PDF format (retail price $170)
  3. Practical Foundations of Windows Debugging, Disassembling, Reversing PDF book (retail price $20)
  4. A personalized attendance certificate with unique CID (PDF format)
  5. Free Software Diagnostics Library membership with access to more than 300 cross-referenced patterns of memory dump analysis, their classification, and more than 70 case studies

Prerequisites: Basic Windows troubleshooting

Audience: Software technical support and escalation engineers, system administrators, security researchers, reverse engineers, malware and memory forensics analysts, software developers and quality assurance engineers

Price: 300 USD

Accelerated Windows Memory Dump Analysis Logo

Currently only available in a PDF book format with $50 discount.

Training testimonials:

I would like to thank you and recommend your training. I think that the “Accelerated Windows Memory Dump Analysis” training is a pin-point, well taught training. I think it’s the leading training in the dump analysis area and I’ve enjoyed it, the books and materials are very detailed and well written and Dmitry answered all of the needed question. In addition after the training Dmitry sent a PDF with written answers and more information about the questions that were asked. I will give this training 5/5. Thank you Dmitry. --Yaniv Miron, Security Researcher, IL.Hack

If you are mainly interested in .NET memory dump analysis there is another course available:

Accelerated .NET Memory Dump Analysis

If you are mainly interested in Mac OS X or Linux core dump analysis there are another courses available:

Accelerated Mac OS X Core Dump Analysis

Accelerated Linux Core Dump Analysis