all InfoSec news
Memory analysis
June 13, 2023, noon | /u/Conscious-Pain2502
Computer Forensics www.reddit.com
1) under pstree, I find that AdobeRAM and reader_s is immediately spawned out when explorer.exe is started. This points to a suspicious activity.
2) explorer.exe is in the folder Windows\Explorer.exe shouldn't it reside in system32 ?
3) vmtoolsd has a parent process that is explorer, from what I know explorer shouldn't start vmtoolsd
4) I find ad_driver which reside in …
analysis computerforensics explorer find folder memory memory analysis skills under windows
More from www.reddit.com / Computer Forensics
Best training for mobile forensics and car forensics
2 days, 13 hours ago |
www.reddit.com
Doing a DFIR Job survey for 2024
3 days, 13 hours ago |
www.reddit.com
Replace our existing Forensics Software
5 days, 10 hours ago |
www.reddit.com
Certifications/Course
5 days, 19 hours ago |
www.reddit.com
From IcedID to Dagon Locker Ransomware in 29 Days
5 days, 19 hours ago |
www.reddit.com
Existing IT experience - how to move into Forensics?
1 week, 3 days ago |
www.reddit.com
Jobs in InfoSec / Cybersecurity
Technical Senior Manager, SecOps | Remote US
@ Coalfire | United States
Global Cybersecurity Governance Analyst
@ UL Solutions | United States
Security Engineer II, AWS Offensive Security
@ Amazon.com | US, WA, Virtual Location - Washington
Senior Cyber Threat Intelligence Analyst
@ Sainsbury's | Coventry, West Midlands, United Kingdom
Embedded Global Intelligence and Threat Monitoring Analyst
@ Sibylline Ltd | Austin, Texas, United States
Senior Security Engineer
@ Curai Health | Remote