Wow! eBook
by: Dmitry Vostokov (Author), Software Diagnostics Institute (Author)
Publisher: Opentask (September 15, 2014)
Language: English
Paperback: 98 pages
ISBN-10: 1908043768
ISBN-13: 9781908043764
Book Description
This is a full-color transcript of a lecture which introduces a pattern language for memory forensics – investigation of past software behaviour in memory snapshots. It provides a unified language for discussing and communicating detection and analysis results despite the proliferation of operating systems and tools, a base language for checklists, and an aid in accelerated learning. The lecture has a short theoretical part and then illustrates various patterns seen in crash dumps by using WinDbg debugger from Microsoft Debugging Tools for Windows.