Investigating the Implications of Virtual Machine Introspection for Digital Forensics [PDF]
Researchers and practitioners in computer forensics currently must base their analysis on information that is either incomplete or produced by tools that may themselves be compromised as a result of the intrusion. Complicating these issues are the techniques employed by the investigators themselves. If the system is quiescent when examined, most of the
Matt Bishop, Brian HAY
exaly +5 more sources
Narrowing the semantic gap in virtual machine introspection [PDF]
Virtual machine introspection(VMI)has been widely used in areas such as intrusion detection and malware analysis.However,due to the existence of semantic gap,the generality and the efficiency of VMI were partly influenced while getting internal ...
Chao-yuan CUI +3 more
doaj +5 more sources
A Security Detection Framework Based on Virtual Machine Introspection [PDF]
In order to detect and stop malicious stream that is disguised as legitimate application stream,a security framework based on virtual machine introspection technique is proposed.It uses hardware events combined with virtual machine introspection and ...
LIU Zheyuan,XU Jun,WANG Xing,GAO Hui
doaj +2 more sources
CloudVMI: Virtual Machine Introspection as a Cloud Service
Virtual machine introspection (VMI) is a mechanism that allows indirect inspection and manipulation of the state of virtual machines. The indirection of this approach offers attractive isolation properties that has resulted in a variety of VMI-based applications dealing with security, performance, and debugging in virtual machine environments.
Abhinav Srivastava
exaly +4 more sources
Model of runtime memory leak detection based on the virtual machine introspection [PDF]
Virtualization technology has been widely used in the field of cloud computing and data center, and it is an important way to improve reliability of system under the virtual computing environment using runtime memory leak de-tecting to eliminate memory ...
Ru-liang XIAO +5 more
doaj +4 more sources
VMI-PL: A monitoring language for virtual platforms using virtual machine introspection
With the growth of virtualization and cloud computing, more and more forensic investigations rely on being able to perform live forensics on a virtual machine using virtual machine introspection (VMI). Inspecting a virtual machine through its hypervisor enables investigation without risking contamination of the evidence, crashing the computer, etc.
Florian Westphal +3 more
openaire +3 more sources
Virtual Machine Introspection in a Hybrid Honeypot Architecture. [PDF]
With the recent advent of effective and practical virtual machine introspection tools, we revisit the use of hybrid honeypots as a means to implement automated malware collection and analysis. We introduce VMI-Honeymon, a high-interaction honeypot monitor which uses virtual machine memory introspection on Xen.
Lengyel, Tamas K. +4 more
openaire +3 more sources
Follow the WhiteRabbit: Towards Consolidation of On-the-Fly Virtualization and Virtual Machine Introspection [PDF]
The growing complexity of modern malware drives security applications to leverage Virtual Machine Introspection (VMI), which provides a complete and untainted view over the Virtual Machine state. To benefit from this ability, a VMI-aware Virtual Machine Monitor (VMM) must be set up in advance underneath the target system; a constraint for the massive ...
Sergej Proskurin +2 more
openaire +4 more sources
copick: An open dataset interface and toolkit for collaborative annotation and analysis of cryo-electron tomography data. [PDF]
Abstract Cryo‐electron tomography (cryoET) enables visualization of macromolecular complexes within intact cellular environments. Continued improvements in instrumentation, sample preparation, and data‐processing pipelines have increased both the scale and the complexity of cryoET datasets, making manual analysis challenging.
Ermel UH +9 more
europepmc +2 more sources
Mitigation of the Impact of Virtual Machine Introspection Pauses on Multi-core Virtual Machines
Virtual machine introspection (VMI) is a class of monitoring techniques used by malware analysis sandboxes to analyze the behavior of malware samples. VMI introduces execution pauses that can be detected within the virtualized environment, revealing the usage of a sandbox.
Cosseron, Léo +2 more
core +4 more sources

