Collaborate Disseminate
In case you didn’t catch it on the Volatility Labs blog, I found an interesting bug that we’ve had in the framework since we’ve had Linux support. If you’ve had cases that involved Linux samples and plugins like linux_yarascan, linux_strings etc, you … Continue reading Linux Memory Forensics: Using mprotect() with PROT_NONE
In case you didn’t catch it on the Volatility Labs blog, I found an interesting bug that we’ve had in the framework since we’ve had Linux support. If you’ve had cases that involved Linux samples and plugins like linux_yarascan, linux_strings etc, you … Continue reading Linux Memory Forensics: Using mprotect() with PROT_NONE
In case you didn’t catch it on the Volatility Labs blog, I found an interesting bug that we’ve had in the framework since we’ve had Linux support. If you’ve had cases that involved Linux samples and plugins like linux_yarascan, linux_strings etc, you … Continue reading Linux Memory Forensics: Using mprotect() with PROT_NONE
After deciding to revisit some old code of mine (ok, very old), I realized that there was something different about how Linux was allocating pages of data I wanted to hide. At first, I was glad that I couldn’t see the data using yarascan, but then… Continue reading Using mprotect(.., .., PROT_NONE) on Linux
After deciding to revisit some old code of mine (ok, very old), I realized that there was something different about how Linux was allocating pages of data I wanted to hide. At first, I was glad that I couldn’t see the data using yarascan, but then… Continue reading Using mprotect(.., .., PROT_NONE) on Linux
Wow, it’s been a while since I’ve written here. A lot has happened since, however. Here are a few updates:The BookWe released a book: The Art of Memory Forensics. For those of you who are considering teaching memory forensics or even … Continue reading Some Updates
Wow, it’s been a while since I’ve written here. A lot has happened since, however. Here are a few updates:The BookWe released a book: The Art of Memory Forensics. For those of you who are considering teaching memory forensics or even … Continue reading Some Updates
Wow, it’s been a while since I’ve written here. A lot has happened since, however. Here are a few updates:The BookWe released a book: The Art of Memory Forensics. For those of you who are considering teaching memory forensics or even … Continue reading Some Updates
The Volatility team will give a talk at the next NYC4SEC meetup on memory forensics on May 8th, 2014 at John Jay College. Make sure to RSVP if you are planning to attend, since there is limited seating! Thanks For the Memory: Rootkits, Exfil… Continue reading Volatility Talk at Upcoming NYC4SEC
The Volatility team will give a talk at the next NYC4SEC meetup on memory forensics on May 8th, 2014 at John Jay College. Make sure to RSVP if you are planning to attend, since there is limited seating! Thanks For the Memory: Rootkits, Exfil… Continue reading Volatility Talk at Upcoming NYC4SEC