Now showing items 1-2 of 2
Convicted by Memory: Recovering Spatial-Temporal Digital Evidence from Memory Images
(Georgia Institute of Technology, 2018-01-19)
Memory forensics is becoming a crucial capability in modern cyber forensic investigations. In particular, memory forensics can reveal "up to the minute" evidence of a device's usage, often without requiring a suspect's ...
Automated In-memory Malware/rootkit Detection via Binary Analysis and Machine Learning
(Georgia Institute of Technology, 2018-02-16)
A prominent technique for detecting sophisticated malware consists of monitoring the execution behavior of each binary to identify anomalies and/or malicious intent. Hooking and emulation are two primary mechanisms that ...