rVMI - A New Paradigm for Full System Analysis
Offered By: Black Hat via YouTube
Course Description
Overview
Explore a groundbreaking approach to full system analysis in this 41-minute Black Hat conference talk. Delve into rVMI, an innovative system that merges Virtual Machine Introspection (VMI) with Rekall, a powerful memory forensics framework, to create a robust platform for scriptable and interactive malware analysis. Learn how rVMI operates from the hypervisor on a live system, offering the ability to start, resume, and trap events at will. Presented by Jonas Pfoh and Sebastian Vogl, this talk introduces a new paradigm that enhances the capabilities of malware analysts and security researchers in understanding and combating sophisticated threats.
Syllabus
rVMI: A New Paradigm for Full System Analysis
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube