YoVDO

An Experience Report on Extracting and Viewing Memory Events via Wireshark

Offered By: USENIX via YouTube

Tags

USENIX Workshop on Offensive Technologies (WOOT) Courses Wireshark Courses Reverse Engineering Courses Vulnerability Analysis Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a 19-minute conference talk from USENIX WOOT '14 that presents an innovative approach to monitoring low-level memory events using Wireshark. Discover how researchers from the University of Calgary developed Cage, a kernel-level mechanism that translates process memory activity into a packet-like format. Learn about the system's ability to monitor data, stack, and heap memory events, as well as its potential applications in debugging, reverse engineering, vulnerability analysis, and security policy enforcement. Gain insights into the challenges of existing memory trapping systems and how Cage addresses these issues by offering a less invasive and more reliable method of memory interposition. Understand the implications of applying a "network packet" metaphor to memory events and how this approach can enhance program analysis environments.

Syllabus

WOOT '14 - An Experience Report on Extracting and Viewing Memory Events via Wireshark


Taught by

USENIX

Related Courses

AFL++ - Combining Incremental Steps of Fuzzing Research
USENIX via YouTube Unearthing the TrustedCore - A Critical Review on Huawei’s Trusted Execution Environment
USENIX via YouTube Cloning Credit Cards - A Combined Pre-play and Downgrade Attack on EMV Contactless
USENIX via YouTube Tick Tock - Building Browser Red Pills from Timing Side Channels
USENIX via YouTube Zippier ZMap - Internet-Wide Scanning at 10 Gbps
USENIX via YouTube