ONLINE: Finding malware using memory forensics tools

  • August 21, 2013 · 6:00 PM

As antivirus and anti-malware tools have improved, attackers have become sneakier, and begun hiding malicious files when compromising a system. As defenders, it is important to know how to find this malware on an infected system in order to determine how an attacker infected your system, what tools they used, and what actions they accomplished. 

In this hands-on course, we will discuss different memory analysis tools and techniques, and will walk you through the steps of identifying hidden malware on a system by dumping the memory and using the Volatility Framework to:

• Discover suspicious ports and processes

• Identify malware on the system

• Determine method of compromise

• identify what actions the attacker has attempted on the system

In addition, we will discuss methods malware uses to hide from the operating system, memory forensics for mobile devices, and alternative forensic techniques when  memory dump is not available. Join us for this exciting class!

Adobe Connect URL:
http://adobechats.adobeconnect.com/capsec2013august/

The Adobe Connect Room will become active a little before 6PM EDT. To use Adobe Connect all you need is a web browser with Adobe Flash installed.

Use the "Enter as a Guest" option to login. There is no username or password.

Join or login to comment.

  • Garima J.

    Great workshop!

    August 21, 2013

  • Michelle

    Hi what is the user name and password?
    Thanks

    August 21, 2013

    • David E.

      Use the "Enter as a Guest" option, there is no username or password for guests.

      August 21, 2013

  • David E.

    The slide deck for tonight has been posted. Go to More -> Files on Meetup to download it.

    August 21, 2013

  • prasad c.

    exactly wen can i join online session. now adobe connect showing that there is nothing to show. please update me as im waiting for online session.

    August 21, 2013

    • David E.

      The Adobe Connect Room will be active a little bit before the meeting starts at 6:00pm EDT today.

      August 21, 2013

Our Sponsors

  • AboutWeb

    Capital Area Cyber Security User Group

People in this
Meetup are also in:

Create your own Meetup Group

Get started Learn more
Allison

Meetup has allowed me to meet people I wouldn't have met naturally - they're totally different than me.

Allison, started Women's Adventure Travel

Start your Meetup today

Act now and get 50% off.
Until February 1.

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy