Using windows crash dumps for remote incident identification

With the proliferation of defense mechanisms built into Windows Operating System,, such as ASLR, DEP, and SEHOP, it is getting more difficult for malware to successfully exploit it. The Microsoft Enhanced Mitigation Exploitation Toolkit further increases the difficulty. A common symptom of a failed...
Zong Fu Chua
June 16, 2015

All papers are copyrighted. No re-posting of papers is permitted