Memory Forensics for Incident Response - SANS DFIR WEBCASTby Hal Pomeranz via SANS Digital Forensics

Modern malware has become extremely adept at avoiding detection by traditional endpoint analysis tools. Memory Forensics gives the investigator multiple solutions for detecting typical malware techniques such as code injection, API hooking, and process hiding. This talk is an overview of Memory Forensics including how to acquire memory images and tools and techniques for analyzing them.

Published 13 March 2015