Description: SecurityTube Live Update: We had promised a lot of video coverage in BH but my camera hard drive died after my first video :( So the videos we are posting are short teasers of the full talks. But should be fun to watch neverthless.
This short clip is from Mark Russinovich's talk on Malware Analysis using the Sysinternals Toolset. I enjoyed the talk along with Andrew from SecurityTube. Mark is one of the guys I really respect for his work on Windows Internals and Security.
Zero Day Malware Cleaning with the Sysinternals Tools
Learn how to analyze and clean zero day malware using the Sysinternals tools directly from their author, including Process Monitor, Process Explorer, and Autoruns. By enabling deep inspection and control of processes, file system and registry activity, and autostart execution points, these utilities are useful for everything from day-to-day computer maintenance to advanced system and application troubleshooting. The tools are especially effective for malware analysis and cleaning - so much so that malware commonly tries to prevent their execution. Mark focuses on the features useful for malware hunting, demonstrates their capabilities by presenting real-world cases of the tools being used to identify and clean malware, and concludes with a live analysis of the infamous Stuxnet virus.
Tags: blackhat , malware , analysis , mark , russinovich ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.