Amr Thabet Q-CERT
download slides (PDF)
This is a free open-source development framework created to support the writing of security tools and malware analysis tools and to convert security research and ideas from the theoretical approach to the practical implementation.
This development framework has been created mainly to support the malware field to create malware analysis tools and anti-virus tools easily without reinventing the wheel and to inspire innovative minds to write their research in this field and implement it using SRDF.
The framework is divided into two parts: User-Mode and Kernel-Mode
The User Mode Features:
The Kernel-Mode part tries to make it easy to write your own filter device driver (not with WDF and callbacks) and gives an easy, object-oriented (as much as we can) development framework with these features.
The Kernel Mode Features:
The presentation will cover the following:
VB2013 takes place 2-4 October 2013 in Berlin, Germany.
The full programme for VB2013, including abstracts for each paper, can be viewed here.