Memory Forensics Made Easy



Memory forensics is a key component of any incident investigation involving endpoints. It can help determine whether an infection did in fact occur, and if so, what type of threat is involved. However, most SOC/IR teams do not fully utilize memory forensics techniques as part of their investigations usually from lack of time or technical know-how.

 

In this talk, we will show you how Intezers endpoint scanner and Volatility plugin analyze live endpoints and entire memory dumps, providing deep insights and quick verdicts by identifying malicious code reuse within memory modules. These memory forensics tools can be incorporated as part of any incident and done at scale for many endpoints within a company.

Relevant Government Agencies

Other Federal Agencies, Federal Government, State & Local Government

Members who viewed this event also viewed:


Event Type
Webcast


This event has no exhibitor/sponsor opportunities


When
Tue, Jun 29, 2021, 10:30am ET


Cost
Complimentary:    $ 0.00


Website
Click here to visit event website


Organizer
SANS Institute


Contact Event Organizer



Return to search results