Dailydave mailing list archives
CANVAS Lightning Demo: D2 Drosera Live Forensics
From: Alex McGeorge <alexm () immunityinc com>
Date: Tue, 19 Oct 2010 11:55:15 -0400
List, Dave asked me to work a bit of his character's special move* on the list today. One of our long time CANVAS Exploit Pack developers has released a pretty interesting tool that's a bit outside the usual scope of what people expect with CANVAS. Drosera from D2** is a live forensics toolkit that fits on a USB drive (with gigs to spare) and is completely self contained. It's a handy thing to have in your incident response toolkit, it is completely independent of CANVAS so fewer worries about setting off your AV/HIDS/HIPS/HOPS when you use it. Aimed at rootkit detection, it has a variety of methods to determine if something sneaky is going on. Come check it out and see it in action against the CANVAS HCN Rootkit. --------- * http://www.immunityinc.com/immunityclash.shtml ** http://www.d2sec.com/products.htm Immunity will be holding a Lightning Demo on, October 19th at 3:00p EDT (UTC - 4), we expect the demo to last between 15 and 20 minutes. Space is limited to 20 and invites will be issued on a first come / first served basis. All invites will be sent no later than 2:00p today, October 19th. To request an invite please send mail to: lightning.demos () immunityinc com with the subject of 'D2 Drosera' If you're unable to attend or wish to see previous demos please see: http://www.immunityinc.com/webex.shtml a recording will be posted after the demo is concluded. If you'd like to check that your config is compatible with WebEx please visit: http://www.webex.com/lp/jointest/ Cheers, -AlexM -- Alex McGeorge Immunity Inc. 1130 Washington Avenue 8th Floor Miami Beach, Florida 33139 P: 212.534.0857 _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- CANVAS Lightning Demo: D2 Drosera Live Forensics Alex McGeorge (Oct 21)
- Re: CANVAS Lightning Demo: D2 Drosera Live Forensics Dexter, Ben (Oct 21)
- Re: CANVAS Lightning Demo: D2 Drosera Live Forensics DSquare Security (Oct 21)
- Re: CANVAS Lightning Demo: D2 Drosera Live Forensics Dexter, Ben (Oct 21)