One of my interests for the last couple of years has been memory analysis especially for use in malware analysis. I’ve mentioned the volatility framework in previous diaries, and Iuse it for nearly all of my memory analysis of WindowsXPsystems, but I’ve recently begun thinking about what tools Ineed in order to do similar analysis on Mac OSXmachines. So, Iwas thrilled when Isaw that Matthieu Suiche (of windd fame) was doing a talk at BlackHat-DC on Mac OSXmemory analysis. The slides are now available and can be found here, and the whitepaper here. A pretty nice read.
—————

Jim Clausing, jclausing –at– isc [dot] sans (dot) org
SEC503:Intrusion Detection In-Depth coming to central OHbeginning 22 Feb, http://www.sans.org/mentor/details.php?nid=20864

View full post on SANS Internet Storm Center, InfoCON: green