Virtual machines: the ultimate tool for computer forensics

Channel:

Subscribers:

344,000

Published on September 6, 2016 5:18:49 AM ● Video Link: https://www.youtube.com/watch?v=e6ps55VIP_k

Duration: 1:01:39

530 views

The field of computer forensics seeks to help investigators reconstruct what happened during a computer intrusion. Did an attacker break in, and if so, how? What havoc did the attacker wreak after breaking in? Tools that help investigators answer these types of questions are still quite primitive and are often hindered by incomplete or incorrect information. Virtual machines can enable more-powerful forensic analysis through techniques such as replaying a computer's instruction stream and introspecting on the state of a virtual machine. This talk describes how to provide and use virtual machine replay and introspection to enable arbitrary forensic analysis, enable reverse debugging of intrusions and bugs, and detect intrusions in the past and present through vulnerability-specific predicates.

Other Videos By Microsoft Research

2016-09-05	Social Mobile Applications, Location, Privacy and the Capital of Nevada [1/16]
2016-09-05	Search Engines Considered Harmful: In Search of an Unbiased Web Ranking
2016-09-05	Science Friction: Where the Known Meets the Unknown
2016-09-05	Concave utility functions on finite sets
2016-09-05	Exploring Mars by 4-Wheel Drive
2016-09-05	Computing with Selfish Agents [1/2]
2016-09-05	Opportunities and Challenges in End-to-End Verification of Software Systems
2016-09-05	Tools and Techniques for Prototyping Future Interactions [1/2]
2016-09-05	Mathematical Sketching: A New Approach for Creating and Exploring Dynamic Illustrations
2016-09-05	A learning-based approach to summarization
2016-09-05	Virtual machines: the ultimate tool for computer forensics
2016-09-05	Headwinds and Tailwinds:┬á Where is the U.S. economy going?
2016-09-05	Paradigms of Worm Defense & Thoughts from an Ivory Tower
2016-09-05	Machine Learning Methods for Discovery of Regulatory Elements in Bacteria
2016-09-05	Eyes on Multimodal Interaction
2016-09-05	From Promoter to Expression ΓÇô A Probabilistic Framework for Inferring Regulatory Mechanisms
2016-09-05	Automated Reconstruction of 3D City Models from Laser Scans and Camera Images
2016-09-05	Bergman complexes, Coxeter arrangements, and graph associahedra
2016-09-05	Biomal Human Emotion Recognition and Peer Steaming Projects at┬á Ryerson Multimedia Research Lab
2016-09-05	Interfaces for Staying in the Flow┬á┬á┬á┬á┬á┬á┬á┬á [1/3]
2016-09-05	Place Lab: Device Positioning Using Radio Beacons in the Wild

Tags:

microsoft research

Channel	Latest
TheEmeraldMaster™️	6 hours ago
Darkness Games	6 hours ago
Haider khalid alnasery	7 hours ago
CBROWN PUBG	7 hours ago
Clubbi	7 hours ago
BrandyDerg	7 hours ago
ASM_txc	8 hours ago
MFGAMING	8 hours ago
Plenoctis - Filosofia del Videogioco	8 hours ago
CS Suomi	8 hours ago
DJ Minecraft	9 hours ago
The 8RCV Adventure’s	9 hours ago
V FACE	10 hours ago
CHEZAME	10 hours ago
WebNations	10 hours ago
Vorbe	10 hours ago
Tru4Smash	10 hours ago
Furious Phoenix Gamings	10 hours ago
ToonChan TV	10 hours ago
REALAX	10 hours ago
Gamer Shiva	10 hours ago
khuka	11 hours ago
SpeRo	11 hours ago
PENGEN CERITAIN	11 hours ago
Diana Kurnia Putri	11 hours ago