Jamie Butler named to the Black Hat Review Board
Written by Travis Reese
MANDIANT would like to congratulate Jamie Butler on his appointment to the Black Hat Review Board. Black Hat is one of the premier technical security conferences, and Jamie’s appointment to its board is a testament to his contributions in advancing the field of computer security. Read the rest
Tags: Black Hat, incident response, malware analysis, Memory analysis, speaking, The Suite Spot, Training
zynamics VxClass and memory analysis
Written by Jamie Butler
First, let me start by saying thanks to our users for the more than 10,000 unique downloads of Memoryze and Audit Viewer in 2010. Peter and I have been working with a lot of different people over the past couple of months to bring you this new release. Read the rest
Tags: Audit Viewer, CanSecWest, malware classification, Memory analysis, Memoryze, Training, zynamics VxClass
Memory acquisition and the pagefile(s)
Written by Jamie Butler
In the past, I have discussed how in reality there may be as many as 16 pagefiles on a single host. The next question is, “How much data could be contained in all these pagefiles”? Why does this matter? Well, the more data in the pagefiles, the longer they will take to acquire. Read the rest
Tags: memory acquisition, pagefiles, swap files, Training
New Memoryze, Audit Viewer, and Training
Written by Jamie Butler
For those who are not on our mailing list for Memoryze or Audit Viewer, we released a new version a little over a week ago. The new version of the software includes all of the memory analysis features that are available in the newly released MANDIANT Intelligent Response (MIR) 1.4. Read the rest
Tags: Advanced Memory Forensics in Incident Response, Audit Viewer, Black Hat, memory forensics, Memoryze, MIR 1.4, Training

