Making Fun of Your Malware
If you weren’t able to make it to Defcon this year, MHL was gracious enough to post the slides to the “Making Fun of Your Malware” presentation he gave with Matt Richard. As an added bonus, you should check out the videos for his upcoming Volatility plugins. With these plugins, MHL demonstrates powerful malware analysis capabilities. The first video demonstrates a plugin with the ability to rebuild both the IAT and a missing PE header. The second video demonstrates how a malware analyst can leverage Volatility to create IDB files for IDA Pro. I continue to be impressed how Volatility developers are shaping the future of memory analysis! Shouts to MHL!!!
