tag:blogger.com,1999:blog-33436932394559680462020-03-02T09:52:18.307+01:00Application Vulnerability and Malicious Code HunterMichael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.comBlogger336125tag:blogger.com,1999:blog-3343693239455968046.post-37896254708936587482015-07-26T00:16:00.001+02:002015-07-26T00:16:10.692+02:00I just published a new blog entry '<a href="http://ift.tt/1LKSGQR">Complex Incident Response Investigations: How to Minimise Breach Impact</a>' over at the <a href="http://ift.tt/1FDUtCO">Malware Research Institute</a>. Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com1tag:blogger.com,1999:blog-3343693239455968046.post-87753538214104255172015-04-03T16:24:00.001+02:002015-04-03T16:24:04.165+02:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1D0kOvO'>Reverse Engineering Mac Malware</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-21469370748856394282015-04-02T19:17:00.001+02:002015-04-02T19:17:00.769+02:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1ELBmJU'>APTs: Getting Serious About Zero-Day Threats</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-46275775611023495432015-04-01T14:56:00.001+02:002015-04-01T14:56:53.450+02:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1aiywPT'>Extracting Actionable Cyber Intelligence from a RAT Named Poison Ivy</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-88257827794765311102015-03-30T23:15:00.001+02:002015-03-30T23:15:38.947+02:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1Cqqaif'>Illbuster - fighting illegal content</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-53369356458198639782015-03-29T09:26:00.009+02:002015-03-29T09:26:10.368+02:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1BI25kD'>Deploying ICS Honeypots to Deceive and Thwart Adversaries</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-48614214675303096632015-03-29T09:26:00.007+02:002015-03-29T09:26:09.576+02:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1D58FGc'>A Threat-Based Security Monitoring Case Study</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com1tag:blogger.com,1999:blog-3343693239455968046.post-32073548264729143022015-03-29T09:26:00.005+02:002015-03-29T09:26:08.735+02:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1D58FpJ'>Cuckoo Sandbox and its recent developments</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-18621095652707275772015-03-29T09:26:00.003+02:002015-03-29T09:26:07.812+02:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1BI27c5'>YARA: The pattern matching swiss knife for malware researchers and everyone else</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-42982114914328312322015-03-29T09:26:00.001+02:002015-03-29T09:26:06.695+02:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1BI26VH'>Visual Malware Reversing: How to Stop Reading Assembly and Love the Code</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-33291201633712768502015-03-24T19:14:00.001+01:002015-03-24T19:14:56.979+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1Ir7NM6'>You can panic now. Host Protection is (mostly) dead</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-89769140955248142632015-03-23T22:45:00.001+01:002015-03-23T22:45:30.336+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1DQwxyB'>10 Ways to Rock Your SOC</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-13044739345057198302015-03-22T18:09:00.003+01:002015-03-22T18:09:15.895+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/19ISbbB'>Reconciling Objective Data with Analytical Uncertainty</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-78660890794970148042015-03-22T18:09:00.001+01:002015-03-22T18:09:14.591+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/19ISbbx'>DFIR Summit 2014 Keynote: Barbarians at Every Gate: Responding to a Determined Adversary</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-31909874146617469762015-03-20T21:19:00.003+01:002015-03-20T21:19:09.716+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1GAgh2u'>Introduction to Windows Memory Analysis</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-54035511756357699022015-03-20T21:19:00.001+01:002015-03-20T21:19:08.382+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1GAgi6z'>Brian Baskin - Introducing Intelligence into Malware Analysis</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-43091630841120637362015-03-18T19:30:00.001+01:002015-03-18T19:30:18.626+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1AFYTFA'>Malware Hunting with Mark Russinovich and the Sysinternals Tools</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-4731082272590178772015-03-17T21:30:00.003+01:002015-03-17T21:30:27.492+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1BRpR10'>Malware Hunting with the Sysinternals Tools</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-35583069116381014342015-03-17T21:30:00.001+01:002015-03-17T21:30:25.951+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1BRpNyf'>Reverse Engineering By Crayon</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-78409569672753954042015-03-15T18:15:00.001+01:002015-03-15T18:15:38.517+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1DopcWS'>Cuckoo Sandbox - malware beware [SIGINT13]</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-81950231421876042432015-03-14T23:00:00.001+01:002015-03-14T23:00:33.403+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1FgEs7h'>Cuckoo Sandbox - Automated Malware Analysis</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-14787817696183530162015-03-13T20:53:00.001+01:002015-03-13T20:53:52.393+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1EbLNRy'>Memory Forensics for Incident Response - SANS DFIR WEBCAST</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-39955901682629820572015-03-12T22:11:00.001+01:002015-03-12T22:11:21.679+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1HMZ86l'>Analysis and Correlation of Macintosh Logs - SANS DFIR WEBCASTS</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-48925627780214839902015-03-11T22:25:00.001+01:002015-03-11T22:25:20.530+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1HEAXXX'>Malware Immunization via Infection Markers</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0tag:blogger.com,1999:blog-3343693239455968046.post-13846484817185159312015-03-11T22:00:00.001+01:002015-03-11T22:00:24.744+01:00<div xmlns='http://www.w3.org/1999/xhtml'>I just published a new blog entry '<a href='http://ift.tt/1wvhI1E'>How memory forensics will help you lose weight and look ten years younger - SANS DFIR WEBCAST</a>' over at the <a href='http://ift.tt/1FDUtCO'>Malware Research Institute</a>.</div>Michael Bomanhttp://www.blogger.com/profile/11401103751625555325noreply@blogger.com0