This talk will be about what memory forensics is, who would be encountering, why and when we need to dig in the memory. Following with showcase of one of the most robust memory forensics toolkit - volatility framework. Participant would expect after some introductory slides, live demo (mainly command line interface) would take place. Though it is not necessary, it is encouraged that participant would bring their own laptop to follow the demo if they wish to.
Notes About Slides
To view the presenter's slides the way he did, you'd can install curl and mdp to your machine, then run this command:
curl -s https://pastebin.com/raw/cPD3NEED | mdp
Basic *nix commands, interest in information security
Hayden Chung
Hayden Chung, a freelance system administrator, describes himself as an information security fanatics which loves to try out new technology. Former guest speaker in OSHK starting from 2014. A community member of Mozilla Hong Kong.