Chapter 6

Advanced Forensics and Analysis

Abstract

Bromium LAVA uses the Microvisor to detect attacks and to provide powerful in-depth analysis of the behavior of advanced malware, before signatures are available. It also offers a powerful platform for forensic analysis that equips IT with vital information needed to understand the origin, targets, and vectors of an attack.

Keywords

forensic analysis

payload

BIOS-kit

bootkit

STIX/MAEC

Microsoft^® Systems Center

Microsoft MAPP

Bromium’s Live Attack Visualization and Analysis (LAVA) uses the Microvisor to detect attacks and to provide powerful in-depth analysis of the behavior of advanced malware, before signatures are available. It also offers a powerful platform for forensic analysis that ...

Get How to Defeat Advanced Malware now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

How to Defeat Advanced Malware by Henry Dalziel, Simon Crosby

Advanced Forensics and Analysis

Abstract

Keywords

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly