Practical Junior Malware Researcher (PJMR) Exam Overview

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

what's up everybody TCM here back with another video and today we're going to talk about the newest certification to hit the TCM security platform which is the pjmr or the Practical Junior malware researcher certification so we're going to take a look at the certification what the exam entails what the scoring system is what kind of job you might be able to expect from earning the certification Etc all in this video no sponsor today we're just going to go ahead and Jump Right In as always if you like the video like comment subscribe all that fun Jazz let's go ahead and learn a little bit more about the pjmr certification okay so the pjmr certification is we call it a one-of-a-kind certification because it really is there's not many other certifications out there like this in fact honestly there's only one that I can think of and that's the gram or the grem from Sans that certification cost ten thousand dollars ours costs very much a fraction of that uh this is a junior certification though we do call it intermediate difficulties if you go on the website it'll say intermediate this is for juniors malware analysis malware research it is a intermediate field it's going to require some intermediate knowledge though we'll walk you through the training and what that entails as well but this is a junior certification for the field the exam is going to take five days to complete this is very similar to our other exams like the pmpt as an example five days you get in an environment you get two days for report writing and a debrief is required as is a report of course so what with the exam environment what you're going to get is access all you need is a VPN connection so you download a VPN file connect to our VPN environment and then you use a web browser to connect to your lab environment we do this because one we want to protect the Integrity of the exam and the samples that we're giving and two we want to protect the students environment so you do have to use our environment that way you can deploy malware reset the environment should you mess anything up and you don't have to deploy malware in your own system it's a win-win for everybody there's a list of jobs here as well what jobs can you get well malware analyst is kind of obvious reverse engineer security researcher all the way into actually doing adversary emulation and red team so this does apply to both the blue the red and even a little bit of purple in between so if you're interested in malware at all and reversing malware this is a great test of your skill set from what you learn in the training so let's talk about the exam format what do you expect in this exam well in total there are 1250 points and this kind of breaks down what the scoring requirements look like you can see we have exam packs samples so you get 900 points there and this is the main part of your exam the meaty part of your exam you get nine samples in total that you need to dissect you don't have to dissect all them we'll talk about this here in a second but they are worth a total of 900 points on top of that you have to do a debrief regardless you have to do a debrief now if you fail the exam or you fail the exam sample packs you won't have to do your debrief it's only for when you're passing or have a passing score lastly there are Yara rules that you can write for these samples and this is for the detection side of things this ties into more of the blue team side of things and they are not required but they are worth another 175 points so in order to pass the exam you need to score a 76 percent which is 950 points out of 1250. so what does that mean in reality well you have nine sample packs that you're given these sample packs range from easy to medium to hard in difficulty the easy ones are only worth 75 points the hard ones are worth a hundred and or 150 I should say the medium ones are worth a hundred so you can get a combination of points and still pass the exam here's one example that I can give you what if you get 600 points in the sample pack so you get 600 out of 900 total points from your samples and then you submit a Yara rule set with those and you also do your debrief well that's another 350 points you add that all up you get 950 points total and you still pass your exam there are two hard samples on the pjmr exam those are worth 150 points each so that in theory right there means that you can do the easy and medium samples do the Yara rules and do the debrief and still pass last year exam without having solved the hard questions and that's okay that's what we are expecting from you as a junior you can also get all nine samples correct and not submit any ER roles and then just do the debrief so we add the Yar rolls in for a little bit of padding in case you need that padding or you don't have to do them at all if you're very confident and comfortable with your malware analysis skills if we jump on the certification website really quick I'll cover the pricing and some of the other items with you standard pricing just like the pmpt the voucher is 299 dollars Standalone that means without training you do get one attempt and one free retake with this as well as a lifetime voucher if you wanted to do the training it is 329 dollars that is the price of the training course if you already own the training then you do not need to purchase this package you can just do the exam voucher only now the training does come with nine hours of training we'll talk about what that training looks like here in just a second I'm going to scroll down to the FAQ just because there are a lot of questions that we get asked for this certification specifically so you do not need to set up a lab we already covered that anybody could take the pjmr and we talked about the job roles that are required for this or you could get out of this now the certification at this time does not expire the exam voucher will never expire your training will never expire everything is for life so if you purchase the exam today and you want to take it a year from now you could if you purchase exam with training and you wanted to take the training year from now you could do that as well so we've covered all that we've covered the how long the exam is the exam is of intermediate difficulty and we do provide training now a lot of you have asked about the training and the training that we provide is enough to pass the exam there are no outside resources needed everything is provided to you and we'll talk about the training in one second here we also offer discounts as always same with all of our other certifications if you are current or former military if you are a first responder meaning your police a nurse an EMT doctor Etc or if you're a student teacher you can send in proof to support tcm-sec.com and we will give you a 20 off code for a certification voucher real real simple process so and this doesn't matter what country you're from we accept everybody from every country okay lastly it's important to talk about the training so we have in here what the training is and what the requirements are so we have the basic I.T knowledge as a requirement general knowledge of malware it's not a lot here and it says hey it's not even required being able to understand Linux and windows is useful and having a home lab with at least six gigabytes of RAM it's not a lot of resources that are needed for this course there's even an AWS setup with this course just in case you wanted to do that you didn't have enough resources for your computer so this is the course topic so these are the course topics I'm going to scroll down and just kind of show you the course topics instead in the curriculum so you'll have a lab build that you go through depending if you want to do it locally or in the cloud and then on top of that you learn static analysis you learn Dynamic analysis you come in here and you have challenges along the way with your dissecting malware and just getting a little bit more comfortable as you go and then it starts to get a little bit advanced in the static and dynamic analysis you start going through some of the more special items and some really cool Shell Code analysis it's actually a fantastic fantastic course it's one of the best sellers at TCM security and it's one of the highest Raiders courses we have just because the author does a fantastic job in setting everything up you even get into Mobile malware analysis it's really cool at the end of it you dissect wannacry which is a very very famous known malware and you even learn the ways of rule writing and report writing so we go into our roles we go into report writing you're given a guide throughout the whole step-by-step process so it tells you even when you take the exam it says Hey here are sample reports here's what you need to submit with your report and here's what ER role looks like we give this all to you in order to prepare you for this exam so there are no surprises there are no gotchas in all of this so hopefully that was informative for you this exam is again meant to be intermediate and difficulty for juniors interested in malware analysis and the closest thing to it is a ten thousand dollar exam from Sand so we are really trying to stick with our motto providing affordable education practical exams and something that doesn't break the bank if you want to go out there and try to learn something new malware analysis is a really cool field it's really complex but Matt Healy does a great job of making it seems simple and preparing you for a certification exam like this so that's it for this video as always my name is Heath Adams AKA The Cyber mentor and I thank you for joining me peace out

Info

Channel: The Cyber Mentor

Views: 12,164

Rating: undefined out of 5

Keywords:

Id: MMG8Qm3CQSU

Channel Id: undefined

Length: 9min 45sec (585 seconds)

Published: Tue Mar 07 2023