1. YasinSURER The Kernel-based protection
Sr.Security Researcher against physical attacks
2. ImpactPoints
Founded in 2011 to provide software security and information
security services
Headquartered in Istanbul, Turkey.
Well-known security experts in the industry.
Advanced services we provide include
• Application Security Testing
• Source Code Review
• Secure Software Development
• Incident Response & Malware Analysis Lab
• Penetration Testing
• Training
3. About Me
Yasin SURER
Sr. Security Researcher – ImpactPoint
...interested in high-level technical details of security
...playing with the kernel
I like Unix-based systems.
IT Security Instructor
yasin.surer@impactpoint.net
4. Overwiev
Physical Memory Attacks and Forensics
Dumpers and Sniffer
How it works
Memory Protection against ...
Architecture-Dependent
Conclusion ?
5. Physical Memory Attacks and Forensics
Random Access Memory (RAM)
Includes data segment
Includes code segment
Dependent on the operating system
Live memory