volatility @volatility
Official account of the Volatility Memory Analysis Project and Windows Malware and Memory Forensics Training. https://t.co/A4TZ1FOjpg github.com/volatilityfoun… Joined August 2008-
Tweets4K
-
Followers22K
-
Following7
-
Likes148
Awesome technical talk at BSides Seattle 2024 by @attrc
Join us at @BlackHatEvents Vegas training in August to learn how to triage modern malware using @volatility 3! - blackhat.com/us-24/training… - blackhat.com/us-24/training…
Learn how to perform detection + triage of sophisticated malware against Windows 10+ systems using #Volatility3 from @Volexity Director of Research & @volatility core developer @attrc at @bsidesseattle on Apr 27! bsidesseattle.com/2024-schedule.… #dfir #memoryforensics #memoryanalysis
Our highly popular Malware and Memory Forensics Training will be in DC in October and focused entirely on @volatility 3! Sign up before the class fills! #DFIR #infosec
Our highly popular Malware and Memory Forensics Training will be in DC in October and focused entirely on @volatility 3! Sign up before the class fills! #DFIR #infosec
The @volatility #PluginContest results are in! Take a look at the awesome submissions we got this time 🥳🎉 #DFIR #memoryforensics #malware #eBPF
The @volatility #PluginContest results are in! Take a look at the awesome submissions we got this time 🥳🎉 #DFIR #memoryforensics #malware #eBPF
And the @volatility #PluginContest First Place winner is: Valentin Obst for BPF Memory Forensics with Volatility 3 Read the full Contest Results: volatilityfoundation.org/the-2023-volat… Congrats to all winners & thank you to all participants! #DFIR #memoryforensics
As highlighted this week, #memoryforensics researchers continue to innovate + contribute to @volatility! The #PluginContest had 27 #Volatility3 plugins, 3 translation layers & 2 utilities! Special thanks to the core developers & previous winners who helped review submissions.
We will announce the @volatility #PluginContest winners tomorrow, Friday, March 15, so stay tuned! #DFIR #memoryforensics #Volatility3
.@volatility #PluginContest #Contender Nitzan Adut: EDRity plugin expands on the detections in malfind, extracting suspicious VAD regions + submits them to VirusTotal, allowing #Volatility3 to run against a live system, offering basic EDR capabilities #DFIR #memoryforensics
.@volatility #PluginContest #Contender Valentin Obst: bpf_lsm plugin enumerates each LSM hook with attached Linux BPF programs, highlights hooks with hidden BPF programs attached & outputs hook names, programs count + ID list of attached programs #DFIR #memoryforensics
.@volatility #PluginContest #Contender Valentin Obst: bpf_netdev plugin lists traffic control Linux BPF programs attached to network interfaces & displays the interface name, MAC address + ID list for BPF programs processing outgoing + incoming packets #DFIR #memoryforensics
.@volatility #PluginContest #Contender Thomas Clarke: saNSRL utility compares files extracted from memory samples using the #Volatility3 dumpfiles plugin to those found in a KFF hash database & returning a disposition for each file if matches or not #DFIR #memoryforensics
.@volatility #PluginContest #Contender Valentin Obst: bpf_listlinks plugin lists all Linux BPF links in a memory sample, simulating functionality of the link subcommand of bpftool, displaying info about the attached program + associated attachment point #DFIR #memoryforensics
.@volatility #PluginContest #Contender Abyss Watcher: check_ftrace plugin allows investigators to detect Function Tracer hooks and provide further context for investigation #DFIR #memoryforensics
.@volatility #PluginContest #Contender @AvielZohar & @orchechik: DirectSyscalls plugin looks for attempts to avoid EDR hooks, scanning for syscall instructions in memory where they should not be present & attempting to validate & disassemble matches #DFIR #memoryforensics
.@volatility #PluginContest #Contender Valentin Obst: bpf_listprocs plugin displays a list of processes that hold Linux BPF objects via a file descriptor #DFIR #memoryforensics
.@volatility #PluginContest #Contender @SpitFire1798018: kusertime plugin helps build a timeline of investigation activity by providing context to an investigator, calculating the current system time at the time of acquisition, as well as the uptime #DFIR #memoryforensics
.@volatility #PluginContest #Contender @SpitFire1798018: notepad plugin extracts strings from the memory segments associated with notepad processes, offering a quicker, automated approach to finding necessary data within a running instance of notepad #DFIR #memoryforensics
.@volatility #PluginContest #Contender @AvielZohar & @orchechik: PackerList plugin helps investigators look for indications of packed processes, enabling inspection of associated section table & PTE permissions of memory-resident processes & DLLs #DFIR #memoryforensics
Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Jake Williams @MalwareJake
131K Followers 2K Following Breaker of software | GSE #150 | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | He/himAli Hadi | B!n@ry @binaryz0ne
29K Followers 567 Following DFIR and Adversary Simulation | DFIR @ ProtonMail | Perfect Stranger | Stronger Together |4n6lady @4n6lady
57K Followers 694 Following #DFIR & #BlueTeam | IR & Threat Detection | #OSINT enthusiast | waiting for HL3 | AWS CIRT - my views are my ownJustin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsThomas Roccia 🤘 @fr0gger_
25K Followers 2K Following Sr. Threat Researcher @Microsoft, Malware Warlock, Threat Intel, Python🧡- Former @McAfee_labs, Goon @Defcon, Creator of #UnprotectProject - Tweets are my ownKatie Nickels @likethecoins
54K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]Mick Douglas 🇺🇦.. @bettersafetynet
26K Followers 571 Following Consultant for InfoSec Innovations | @SANSInstitute Principal Instructor | @IANS_Security Faculty | I like information security. How about you?Chad Tilbury @chadtilbury
23K Followers 624 Following Digital forensics and incident response. Ex-AFOSI, Mandiant, and CrowdStrike. SANS Institute Fellow and co-author of #FOR500 and #FOR508 courses.Michael Koczwara @MichalKoczwara
18K Followers 2K Following Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/vixTz8xKuF https://t.co/VQWaze6gaFGrzegorz Tworek @0gtweet
30K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-ςεяβεяμs - м�.. @c3rb3ru5d3d53c
21K Followers 235 Following 💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ https://t.co/SfTI8uJa23Mike Felch (Stay Read.. @ustayready
15K Followers 2K Following Pentester / Red Team | Hacking since Renegade BBS backdoors | Dev since vb3 | Content since '99-'03 ezines | Prior CrowdStrike / BHIS | In Christ's gripJiří Vinopal @vinopaljiri
8K Followers 429 Following Threat Researcher at Check Point @_CPResearch_ #DFIR #Reversing - All opinions expressed here are mine only. https://t.co/iWvwWF1AnNSamir @SBousseaden
24K Followers 1K Following Detection Engineering | Elastic Security Mastodon: @[email protected]hasherezade @hasherezade
84K Followers 845 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)Matthew @embee_research
12K Followers 1K Following Malware Researcher & Reverse Engineer | Creating and Sharing Educational Cyber ContentMoose @LitMoose
39K Followers 5K Following DFIR | Violinist | Former medical/vet tech | I work for everyone and no one. Infosec retellings obfuscated. Salty and tired. Also Litmoose on BlueSkyExploit 0day @Exploit0day404
1 Followers 35 FollowingChed Wiggins @CheddarB0b42
552 Followers 1K Following SOC Manager @LSU_Shreveport. 🟪🟨⚜️ My sarcastic tweets do not represent the views of my employer and can (probably) be safely ignored. We train blue teamers.Frida @Frijakda
0 Followers 105 Followingkhoot kfoot @Koo04570
3 Followers 21 FollowingChriss_0x01 @Chriss_0x01
903 Followers 4K Following Proud #EthicalHacker #CyberCrime🖥️#Investigator #BugBounty🏆#Hunter #ThreatHunter (#InfoSec & #CyberSec) #Expert🧑💼 && _I_AM_: CEO @EthiclSecAgency 👀Liviticuz @Liviticuz_Pack
1 Followers 177 FollowingJD @ManofGilnockie
16 Followers 349 FollowingIvan 13 @ivan92031121
4 Followers 183 Following0x0007L# @0x0007L
40 Followers 440 Following A solitary wild spirit, gradually vanishing into the shadows. # Into reverse engineering, malware, cybercrime, web, security, cloud, blockchain.Zander Widjaja @ZanderWidjaja
92 Followers 323 Following writer | 23 | critical thinking | talking to my younger self | design notesMarcos Carvalho @Pugmani
3 Followers 166 FollowingJason Shutters @jshutters145
87 Followers 461 FollowingVeli UYSAL | veliuysa.. @0xVeliUysal
3K Followers 1K Following #developer #blockchain #web3 #tutor #rustlang #java #solidity 🦀 | Founder @turkiyerustcom | Member of @SuperTeamTR & @Layka_DAO & @developer_dao & @TBDankara💁🏻♂️ @nomoremari_
0 Followers 322 FollowingG @G577814979637
2 Followers 74 Followingsink0Rswim @laceandload
105 Followers 2K FollowingΣΕΜΕΡ @thesemer_
18 Followers 674 Following | Cyber Security | Blockchain Enthusiast | " Football , my philosophy "scoutsmaster @scoutsmaster1
6 Followers 59 Followinglala guo @lalaguo1
1 Followers 110 Followingcrayy8 @crayy81
2 Followers 14 FollowingRakan @RaG7997
0 Followers 78 Followingtsr @tsr1654079
4 Followers 128 FollowingRichard McKee @RichardMcK81778
6 Followers 26 FollowingVasilios Mavroudis @mavroudisv
842 Followers 708 Following Principal Research Scientist @turinginst. I like systems security, reinforcement learning, dogs & elephants.菅原宏之 @Sugah_Hiroyuki
43 Followers 339 Following 情報セキュリティについて、の~んびりと研究している おっさん です。 ご相談、お困りごとなどございましたら、お力になれるかもしれません! (情報処理安全確保支援士 第023043号、CISSP)gabriel paiva @gabrielp2
1 Followers 164 Followingwickyramrattan @wickyramrattan
1 Followers 198 FollowingHusam @hoxedo
0 Followers 94 FollowingElias Leslie @EliasBLeslie
2 Followers 132 FollowingMyron @myroncosta
145 Followers 971 FollowingDly_Reflection @Dly_Reflections
540 Followers 196 Following Pentester, hacker, Bug Bounter. Hackers are the heroes of the digital W0rlD.Rͬaͣn̾dͩoͦmͫ A�.. @suckitsocialme1
736 Followers 981 Following (╯°□°)╯︵ ┻━┻ Cyber, Osint, Gyoza Always Curious. INTJ SyntaxError generator drwxr-xr-x | sudo your life ¯\_(ツ)_/¯ Information is ineluctablehp @himadhara
0 Followers 190 Following Engineer| Space fact explorer| views my own| calm & living simple & meaningful life, have a nice day dear.Jacky Ang @jackyangkj
6 Followers 272 Followingmimooon @mimooon7498
42 Followers 77 FollowingPranav Padalkar @PadalkarPranav
3 Followers 84 FollowingSlade ("...if you can.. @BigPlayReceiver
1K Followers 2K Following Chaotic Good | PMP : GCIH : GPEN | 🎯CloudSec | Did some Navy stuff | Me or John Harbaugh??! 😤 | illadelph...forevs | ❤️❤️❤️USWNT | BEAT. ARMY. DAMMIT.Rohan Bhise @rohanbhise836
1 Followers 86 Followingmd-ir-ap @ansari_response
196 Followers 224 Following 🦅🦅🦅 Mandiant Advanced Practices🦅🦅🦅 *opinions are my own and do not express the views or opinions of my employerI//uS!0nS @c03rci0n
79 Followers 891 FollowingAustin Guy @AustinGuy524020
48 Followers 132 FollowingNolaSec @NolaSec
461 Followers 200 Following We an open, informal group that meets around good food and drink to discuss current trends and research in computer security.Golden G. Richard III @nolaforensix
4K Followers 5K Following #Cybersecurity #Professor, Director of the @LSU #Cyber Center and the Applied Cybersecurity Lab (ACL). @LSU_CCT @lsucyber #pythonsucks #dfir 🇺🇸.AAron Walters @4tphi
19 Followers 48 FollowingBrendan Dolan-Gavitt @moyix
25K Followers 6K Following Associate Professor @ NYU Tandon. Security, RE, ML. PGP https://t.co/3WXr0RfRkv Founder of the MESS Lab: https://t.co/zGycrX3Gmn "an orc smiling into the camera" — CLIPAndrew Case @attrc
28K Followers 4K Following @Volatility Core developer, Dir. of Research @Volexity, @lsucyber, The Art Of Memory Forensics Co-AuthorMichael Ligh (MHL) @iMHLv2
10K Followers 1K Following CTO @Volexity. Malware Analyst's Cookbook. Art of Memory Forensics. The @Volatility Project. Thoughts are those of my employer, not mine, they made me say it.Jamie Levy🦉 @gleeda
9K Followers 6K Following @Volatility Core Dev | Art of Memory Forensics co-author | Director of Adversary Tactics @HuntressLabs | #DFIR enthusiast/trainer | [email protected]Here we go - Lets find out about @volatility 3.0!
It's hard to imagine that I leave in two days for @volatility Memory Forensics Training. With the acquisition this week, building a slide deck, and overall work, it snuck up on me. And now to forcefully make myself sign off from email and Slack and just learn for a week.
Ooooohhhhh! Looking forward to what the @volatility folks have in store! #DFIR
We are honored that so many of you voted for our presentation in the #OSDFCon 2019 Survey. We can now officially tell you that we will be presenting "Volatility 3 Public Beta: The Insider’s Preview" -- more details to follow! #dfir #memoryforensics
So, last weekend was pretty good. I got married!
Anytime you can get @moyix on board to help you with a project then you should take it If you ever analyzed a VAD or registry data in Volatility then that was because of his original research: dfrws.org/sites/default/… and dfrws.org/sites/default/…
BTW, I would like to point out the massive help of @moyix, our shepherd for this paper. If every shepherd would put as much work into improving a paper and even double checking the reproducible builds, we would not have such a reproduction crisis!
@volatility @balzarot Thanks to you guys to have developed and to maintain such an amazing tool. We will release the code, the graphs and do a PR with the new plugins as soon as possible!
The link from my 2014 tweet is now dead, but it was to the master piece dissertation done by Dr. Cifuentes. x.com/attrc/status/4… Working link: yurichev.com/mirrors/DCC_de…
I can not say how humbled I am to have been able to present @MagnetForensics #MUS2019 user summit and thank @B1N2H3X for not taking my picture when I look creepy. Looking for to next year. Also huge thank you to @iMHLv2 @attrc @4tphi @gleeda for you hard work on @volatility
“What’s your degree in?” “Computer Forensics” “Can you help me fix my computer/phone, or hack my SO?” “... *sigh* ...” #DFIR x.com/cutchabaldy/st…
“What did you do your PhD in?” “Native American Studies.” “You know, I have a great grandmo....” “Let me just stop you right there.”
@mbromileyDFIR @attrc @BSidesAustin Can't believe it, after years of avoiding it, he actually finally wore a @volatility shirt 😉
Great tools, my choice is @volatility
3 Best Memory Forensics Tools For #Security Professionals - bit.ly/2JIa28Y - #Computers #CyberSecurity #Digital-Forensics #Hacking
Come see my talk at @BSidesAustin today!
Looking forward to speaking at BSidesAustin tomorrow! Come see my talk at 2PM! bsidesaustin2019.sched.com/event/M5z5?ifr… #DFIR #infosec
@mamboz01 @BSidesCbr @CyberGovAU @JasonYPang Me too! I actually got the Art of Memory Forensics book by the people who did Volatility ( amzn.asia/923E7HD ) and am going to continue digging as I make my way through it. Such an interesting and important field!!
@TheMikeWylie @volatility .... great community support, regular updates, overall great toolset.
I am very excited to announce that I will be speaking at @BSidesAustin in a few weeks! sched.co/M5z5 #DFIR