Collaborate Disseminate
Hi everybody, my name is Ryan Maggio. I am a recent graduate from the Louisiana State University and today I’m going to be presenting a project called Seance that was worked on by myself, Andrew Case, Aisha Ali-Gombe and Golden … Rea… Continue reading Seance: Forensic Divination
Matthew: Welcome to our presentation. I’m Matthew Piscitelli.
Tyler: And I’m Tyler Thomas.
Matthew: And we performed memory forensics on USB attack platforms. This work was supported by National Science Foundation Grant number 1… Continue reading Duck Hunt: Memory Forensics of USB Attack Platforms
The month of May saw a robust, diverse set of academic papers published. Tools and techniques are as present as ever — focusing that month on Windows 10 and mobile malware — but so are discussions about how to ensure … Read more The … Continue reading Research Roundup: New Tools And Techniques And Ensuring Their Quality
What is Memory Forensics? Memory forensics is a vital form of cyber investigation that allows an investigator to identify unauthorized and anomalous activity on a target computer or server. This is…
Go on to the site to read the full article
The post… Continue reading Computer Forensics: Memory Forensics
Just in time for the holidays, we have a new update to the SANS Memory Forensics Cheatsheet! Plugins for the Volatility memory analysis project are organized into relevant analysis steps, helping the analyst walk through a typical memory investigation. We added new plugins like hollowfind and dumpregistry, updated plugin syntax, and now include help for […] Continue reading SANS Memory Forensics Cheat Sheet
Just in time for the holidays, we have a new update to the SANS Memory Forensics Cheatsheet! Plugins for the Volatility memory analysis project are organized into relevant analysis steps, helping the analyst walk through a typical memory investigation. We added new plugins like hollowfind and dumpregistry, updated plugin syntax, and now include help for […] Continue reading SANS Memory Forensics Cheat Sheet
The Volatility Framework is an an advanced, completely open collection of tools for memory forensics, implemented in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory (RAM) samples. The extraction… Continue reading Volatility Framework – Advanced Memory Forensics Framework
Our final OSDFCon blog series featured speaker is actually a collective: the team behind the nonprofit Volatility Foundation. This year, memory forensics has evolved once more, and the Volatility team talked to us about using it to be more proactive than reactive in incident response. BT: Your talk topic this year is “Feasting Off the […]
Continue reading The Volatility team talks proactive threat hunting with memory forensics (an OSDFCon presentation)
My recent webcast with Jaron Bradley was recorded and a link is available below. If you have been looking for an excuse to get more familiar with Windows PowerShell, have a look. What Malware? Hunting Command Line Activity There is a reason hackers use the command line, and it isn’t to impress you with their prowess. […] Continue reading Hunting PowerShell Command Lines
My recent webcast with Jaron Bradley was recorded and a link is available below. If you have been looking for an excuse to get more familiar with Windows PowerShell, have a look. What Malware? Hunting Command Line Activity There is a reason hackers use the command line, and it isn’t to impress you with their prowess. […] Continue reading Hunting PowerShell Command Lines