Internals of Windows Memory Management for Malware Analysis

By Teddy Rogers

Find their other files

Share

Followers 0

About This File

This document presents insights from extensive reverse engineering efforts of the memory management mechanisms of Windows XP. The focus lies on the mechanisms which are used to map executable modules into the address space and the role of the page fault handler in this context.

Share

Followers 0

Previous File Efficient and Fine-grained Address Space Randomization

Next File Lessons Learned from an Investigation into the Analysis Avoidance

User Feedback

0 Comments

Recommended Comments

There are no comments to display.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×

Community
Search
- Back
- Search
- Google (Advanced Search)
- Yahoo (Advanced Search)
- Baidu
- Bing
- Brave
- DuckDuckGo
- Ecosia
- Gibiru
- Mojeek
- Onion Search Engine
- Qwant
- SearXNG
- Startpage
- Swisscows
- Yandex
All Activity
Downloads

×

Create New...