November 2023
Beginner to intermediate
352 pages
5h 8m
Japanese
Content preview from 実践 メモリフォレンジック ―揮発性メモリの効果的なフォレンジック分析
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
11章macOSでのマルウェアの検知と解析
以前は、macOSに対する攻撃やマルウェアの開発は単発で、些細なアドウェアに限定される場合が多かったです。2020年から2021年にかけても、macOSの主な脅威はアドウェアのShlayer(https://redcanary.com/threat-detection-report/threats/shlayer)でしたが、高度な攻撃者が背後にいる標的型攻撃が見られるようになってきています。その好例が、ベトナムの関与が疑われているグループであるOceanLotus(別名APT32。https://attack.mitre.org/groups/G0050)です。このグループは、悪意のあるMicrosoft Wordの文書を介してバックドアを提供し、macOSユーザをターゲットにしていました。
企業でのmacOSの普及拡大に伴い、MacShellSwift、MacC2、PoshC2、Empireのような様々なポストエクスプロイトフレームワークが登場しました。さらに、macOS向けのMalware-as-a-Serviceはすでにダークネットのフォーラムに登場しています(https://www.computerworld.com/article/3626431/scary-malware-as-a-service-mac-attack-discovered.html)。
当然のことながら、M1チップを搭載した新しいデバイスも、サイバー犯罪者の目を逃れていません。Red Canaryの専門家は、M1プロセッサを搭載したMacを標的とする新しいマルウェアSilver Sparrowを発見しました(https://www.macworld.co.uk/news/new-malware-m1-mac-3801981 ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.