Learn Backend Development Part-Time, Online
UC San Diego Product Management Certificate — AI-Powered PM Training
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore advanced memory forensics techniques in this 31-minute conference talk from OSDFCon 2021. Discover how to effectively analyze volatile memory samples, uncover various attack methodologies, and learn practical investigation steps. Delve into topics such as dll loading, code injection, shell code injection, page permissions, and remote library injections. Follow along with a live demo showcasing memory analysis techniques, including the use of Virtual Address Descriptor Trees and Memory Modules. Gain insights from Jamie Levy, a senior researcher and developer with extensive experience in digital forensics, as she emphasizes the critical role of volatile memory in investigations and provides valuable tools for future analyses.
Syllabus
Introduction
About Jamie
Background
dll loading
Code injection
Shell code injection
Page permissions
Remote library injections
How to find remote library injections
Virtual Address Descriptor Tree
Reflective dll Loading
Memory Segments
Bad Tree
Memory
Demo
Memory Module
Memory Sample
How to Start
Timeline
Registry Key
Conclusion
Taught by
BasisTech