/docs/teaching/memory-analysis/ Recent content on Unsorted Stuff Hugo -- gohugo.io /docs/teaching/memory-analysis/materials/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/teaching/memory-analysis/materials/ In-Memory Malware Analysis This page contains some information and links for In-Memory Malware Analysis course. In case of any questions, don’t hesitate to contact me at vaclav.lorenc-at-gmail.com or @valorcz on Twitter. Course Texts In-Memory Analysis (text) — A brief introduction to reverse engineering and memory forensics (English). In-Memory Analysis (slides) — Handouts for this course (English). Tools and Templates In-Memory Analysis (tools) — A bootstrap folder structure with Volatility Framework and other tools. /docs/teaching/memory-analysis/sample-report/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/teaching/memory-analysis/sample-report/ PV204: Sample Analysis Report This is a sample report describing analysis of xp-infected.vmem memory image (i.e. exercise01). We’ll demonstrate both the structure of the report and one of the possible analysis workflows you could use for your own research/work. Sample Preparation Before we start with the analysis, we need to download the memory image. That can be done via exercise 1 command issued on the VM command line (see the official course documentation for more details).