Leaving No Stone Unturned

Most analysts know the value of including memory forensics in investigations. If you were given a memory sample, would you know where to start in your investigation? How could you get the most information relevant to your case? This talk will demonstrate the importance of including Volatile memory in your investigations by covering several attack methodologies seen in the field- all while giving you analysis steps that you can use going forward.

Jamie Levy
Volatility

Jamie Levy is a senior researcher and developer. In the past, she worked on various R&D projects and forensic cases at various DFIR companies. Jamie has taught classes in Computer Forensics and Computer Science at Queens College (CUNY) and John Jay College (CUNY). She has an MS in Forensic Computing from John Jay College and is an avid contributor to the open source Computer Forensics community. She is an active core developer on The Volatility Framework and co-author of “The Art of Memory Forensics”. Jamie has also authored peer-reviewed conference publications and presented at conferences (OMFW, CEIC, IEEE ICC) on the topics of memory, network, and malware forensics analysis.