The purpose of this talk is to provide an overview of malware defenses that attempt to hinder reverse engineering efforts and provide methods and resources to overcome those obstacles. Malware authors often don't want defenders to be able to understand their creations because then they can create defenses and indicators of compromise. Anti-disassembly, anti-debugging, anti-virtualization, and packing will be discussed as well as methods to overcome common implementations. Creation of indicators of compromise and defenses for after the malware's shields are down will also be covered. It is my hope that participants will gain the basic skills and confidence to immediately start safely investigating armored malware in order to thoroughly understand and defend against infections.