Chapter 6

Advanced Forensics and Analysis

Abstract

Bromium LAVA uses the Microvisor to detect attacks and to provide powerful in-depth analysis of the behavior of advanced malware, before signatures are available. It also offers a powerful platform for forensic analysis that equips IT with vital information needed to understand the origin, targets, and vectors of an attack.

Keywords

forensic analysis
payload
BIOS-kit
bootkit
STIX/MAEC
Microsoft® Systems Center
Microsoft MAPP
Bromium’s Live Attack Visualization and Analysis (LAVA) uses the Microvisor to detect attacks and to provide powerful in-depth analysis of the behavior of advanced malware, before signatures are available. It also offers a powerful platform for forensic analysis that ...

Get How to Defeat Advanced Malware now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.