This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
livedm [2010/09/20 10:30] dxu |
livedm [2010/09/27 14:54] (current) dxu |
||
---|---|---|---|
Line 24: | Line 24: | ||
===== Publications ===== | ===== Publications ===== | ||
- | * "Kernel Malware Analysis with Un-tampered and Temporal Views of Dynamic Kernel Memory". Junghwan Rhee, Ryan Riley, Dongyan Xu, and Xuxian Jiang. To appear in the 13th International Symposium on Recent Advances in Intrusion Detection (RAID 2010), Ottawa, Canada, September 2010 | + | * "Kernel Malware Analysis with Un-tampered and Temporal Views of Dynamic Kernel Memory". Junghwan Rhee, Ryan Riley, Dongyan Xu, and Xuxian Jiang. In proceedings of the 13th International Symposium on Recent Advances in Intrusion Detection (RAID 2010), Ottawa, Canada, September 2010 |
- | * [[http://www.cs.purdue.edu/homes/rhee/pubs/raid2010_rhee.pdf|Paper]] | + | * [[http://www.springerlink.com/content/a3w252328185412h/fulltext.pdf|Paper]] |
* [[http://www.cs.purdue.edu/homes/rhee/pubs/raid2010_slides.pdf|Slides]] | * [[http://www.cs.purdue.edu/homes/rhee/pubs/raid2010_slides.pdf|Slides]] | ||
===== Demo ===== | ===== Demo ===== | ||
Line 32: | Line 32: | ||
* Applications: Hidden PCB and kernel driver detector | * Applications: Hidden PCB and kernel driver detector | ||
* Note: some parts of a video clip are trimmed to reduce its play time. | * Note: some parts of a video clip are trimmed to reduce its play time. | ||
- | * [[http://www.cs.purdue.edu/homes/rhee/pubs/raid2010_livedm.avi|Demo]] in AVI format (87M) | + | * [[http://www.cs.purdue.edu/homes/rhee/pubs/raid2010_livedm.avi|Demo]] in AVI format |