Categories

Mobile — 71
NSL — 19
NSL Project — 2

Real-time deep virtual machine introspection and its applications

by Sihyeong Park on 2014-10-09 16:44:26

Real-time deep virtual machine introspection and its applications Virtual Machine Introspection (VMI) provides the ability to monitor virtual machines (VM) in an agentless fashion by gathering VM execution states from the hypervisor and analyzing those states to extract information about a running operating system (OS) without installing an agent inside the VM. VMI's main challenge lies in the difficulty in converting low-level byte string values into high-level semantic states of the monitored VM's OS. In this work, we tackle this challenge by developing a real-time kernel data structure monitoring (RTKDSM) system that leverages the rich OS analysis capabilities of Volatility, an open source computer forensics framework, to significantly simplify and automate analysis of VM execution states. The RTKDSM system is designed as an extensible software framework that is meant to be extended to perform application-specific VM state analysis. In addition, the RTKDSM system is able to ... Continue reading →

689 Views

Android L: An energy perspective

by Jorge Frisancho on 2014-09-13 00:00:00

Android “L” While it is no surprise that there is a new iteration of the Android Operati Continue reading →

561 Views