- This event has passed.
Membership Meeting 06/27/2018
June 27, 2018 @ 5:00 PM - 7:30 PM
Monthly ISSA Meeting Slides: Click Here
Speaker Slides: REnigma: A Tool to Analyze Malware
Title: REnigma: A Tool to Analyze Malware
REnigma is an advanced semi-automated malware analysis tool designed to give enterprise network defenders a safe, effective, and efficient environment to manually execute and inspect malware behavior. Originally developed at the Johns Hopkins University Applied Physics Laboratory (JHU/APL) with funding from the United States Government, REnigma uses advanced Virtual Machine Record and Replay technology to capture everything that happens inside of a virtual machine at nearly full speed and perfectly replay execution down to the instruction level. With this capability, analysts can easily capture second stages, defeat advanced packers, extract IOCs from memory, and much more. This talk will cover how REnigma works, how REnigma is deployed within an enterprise environment, and give a demonstration of REnigma analyzing malware.
Speaker: Jim Stevens, Co-Founder Deterministic Security, LLC
Jim Stevens is a co-founder of Deterministic Security, LLC. He was previously employed at the Johns Hopkins University Applied Physics Laboratory (JHU/APL). At JHU/APL, Jim co-lead the Malware Laboratory, co-lead the REnigma project, and invented Guard Lines, a patented CPU-based technology designed to prevent memory corruption exploits in real time. He holds a B.S. in Computer Engineering from the University of Kansas, an M.S. in Computer Science from the University of Arkansas-Fayetteville, and is a Ph.D. candidate in Computer Science at the University of Maryland-College Park.
