Practical Memory Forensics
Memory forensics is a vital part of modern digital forensic examinations as threat actors have started using memory-based malware more often. This comprehensive guide focuses on the application of modern memory forensics techniques to detect hidden threats in memory and reconstruct user activity based on volatile data.
Offered by
Difficulty Level
Intermediate
Completion Time
10h8m
Language
English
About Book
Who Is This Book For?
This book is for incident responders, digital forensic specialists, cybersecurity analysts, system administrators, malware analysts, students, and curious security professionals new to this field and interested in learning memory forensics. A basic understanding of malware and its working is expected. Although not mandatory, knowledge of operating systems internals will be helpful. For those new to this field, the book covers all the necessary concepts.
Practical Memory Forensics
- About Book
- Who Is This Book For?
- Book Content
Book content
chapters • 10h8m total length
Why Memory Forensics?
Acquisition Process
Windows Memory Acquisition
Reconstructing User Activity with Windows Memory Forensics
Malware Detection and Analysis with Windows Memory Forensics
Alternative Sources of Volatile Memory
Linux Memory Acquisition
User Activity Reconstruction
Malicious Activity Detection
MacOS Memory Acquisition
Malware Detection and Analysis with macOS Memory Forensics
Related Resources
Access Ready-to-Use Books for Free!
Get instant access to a library of pre-built books—free trial, no credit card required. Start training your team in minutes!