This presentation will show the results of research in the field of memory forensics, specifically on how to defeat memory forensics in the field of incident investigations.
Two years ago I was challenged to find a way to make my offensive tools immune to memory forensics analysis – this talk is the walkthrough of the extensive technical overview of the methodology, tools, techniques and other resources developed on purpose for that challenge. The efficiency of the research will be proven during the duel but, successful or not, all of it will be explained.
What to expect from this presentation? Low-level research, Vulnerabilities, Exploits, Tools, (very special) GUIs and some fun war stories with the ever-present offensive approach.