Paging All Windows Geeks – Finding Evil in Windows 10 Compressed Memory

Explore the intricacies of Windows 10 memory compression implementation in this 49-minute Black Hat conference talk. Delve into undocumented structures and algorithms involved in the process, gaining valuable insights to support new Windows 10 builds in forensic tools. Presented by Omar Sardar and Dimiter Andonov, this technical session equips Windows geeks with the knowledge to uncover potential malicious activities within compressed memory. Access the full abstract and presentation materials for a comprehensive understanding of this cutting-edge forensic analysis technique.

Paging All Windows Geeks – Finding Evil in Windows 10 Compressed Memory