Hi All, You already know this :-), its nothing new
I had submitted a Plugin to Volatility plugin contest 2016 and I won the Volatility Plugin contest 2016 :-). Volatility is an advanced memory forensics framework. I had written a plugin, the plugin (hollowfind) detects some of the possible Anti-Memory forensics tricks used by the malware authors in the wild. Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect and divert the forensic analysis techniques. Volatility Plugin Contest Winner Details (blog from the Volatility team) ======================================================================== https://volatility-labs.blogspot.in/2016/12/results-from- 2016-volatility-plugin.html Details of the Plugin on my cysinfo blog: =============================== https://cysinfo.com/detecting-deceptive-hollowing-techniques/ Tweets from Volatility team: =================================== https://twitter.com/volatility/status/717003990073024512 https://twitter.com/attrc/status/803648069363441664 https://twitter.com/volatility/status/805827006650781696 Thanks, Monnappa @monnappa22 -- You received this message because you are subscribed to the Google Groups "NFORCEIT" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send an email to [email protected]. Visit this group at https://groups.google.com/group/nforceit. For more options, visit https://groups.google.com/d/optout.
