ShmooCon 2014: ADD -- Complicating Memory Forensics Through Memory Disarray

For more information visit: To download the video visit: Playlist Shmoocon 2014: Speakers: Jake Williams | Alissa Torres In this presentation, we’ll present ADD (attention deficit disorder), a tool that litters Windows physical memory with (configurable amounts and types of) garbage to disrupt memory forensics. Memory forensics has become so mainstream that it’s catching too many malware authors during routine investigations (mak