Presenter: Edmund Brumaghin
Setting up a malware lab? Here are some tools.
RegShot (Registry Snapshot, and Directory contents)
ProcessHacker (Real-time PID monitoring with colours)
ProcessMonitor (Filters for specific use-cases can be found online)
Filewatch - Might not be this one.
Places to find some IOC/Malware.
Automatic identification of attack vectors from source code.
Create a Security Model
Create Engine to apply security model to project model (JSON from parser)
[Patent] Detect where data is going on the network and generate and apply firewall rules.
Currently automate security tests, but tests are manually written.
Annotate code with the security flags.
7 Sep 2017