YoVDO

Leaving No Stone Unturned

Offered By: BasisTech via YouTube

Tags

Open Source Digital Forensics Conference (OSDFCon) Courses Cybersecurity Courses Code Injection Courses Memory Forensics Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore advanced memory forensics techniques in this 31-minute conference talk from OSDFCon 2021. Discover how to effectively analyze volatile memory samples, uncover various attack methodologies, and learn practical investigation steps. Delve into topics such as dll loading, code injection, shell code injection, page permissions, and remote library injections. Follow along with a live demo showcasing memory analysis techniques, including the use of Virtual Address Descriptor Trees and Memory Modules. Gain insights from Jamie Levy, a senior researcher and developer with extensive experience in digital forensics, as she emphasizes the critical role of volatile memory in investigations and provides valuable tools for future analyses.

Syllabus

Introduction
About Jamie
Background
dll loading
Code injection
Shell code injection
Page permissions
Remote library injections
How to find remote library injections
Virtual Address Descriptor Tree
Reflective dll Loading
Memory Segments
Bad Tree
Memory
Demo
Memory Module
Memory Sample
How to Start
Timeline
Registry Key
Conclusion


Taught by

BasisTech

Related Courses

Meet the xLeapp Family
BasisTech via YouTube Decrypting TLS Traffic on the Fly
BasisTech via YouTube Log Parser as a Forensic Tool
BasisTech via YouTube Two Faces to the Same Linux - GUI Environments
BasisTech via YouTube Chrome Wasn't Built in a Day
BasisTech via YouTube