SpiderLabs using Volatility to Analyze Hollow Processes
In a recent blog post, the SpiderLabs team at Trustwave demonstrated how to leverage Volatility to find “Hollow Processes”, based on a recipe described in the Malware Analyst’s Cookbook. It’s great to see Volatility becoming the tool of choice for advanced security teams:
“The Volatility Framework is an excellent open source tool for volatile memory forensic analysis.”
Shoutz to the SpiderLabs team! Shoutz to MHL and rest of the MAC team for creating my favorite security book!
