Internals of Windows Memory Management (not only) for Malware Analysis


Willems, Carsten


[img]
Preview
PDF
InternalsOfWindowsMemoryMangement2.pdf - Published

Download (407kB)

URL: http://ub-madoc.bib.uni-mannheim.de/3148
URN: urn:nbn:de:bsz:180-madoc-31489
Document Type: Working paper
Year of publication: 2011
Publication language: English
Institution: School of Business Informatics and Mathematics > Sonstige - Fakultät für Mathematik und Informatik
MADOC publication series: Veröffentlichungen der Fakultät für Mathematik und Informatik > Institut für Informatik > Technical Reports
Subject: 004 Computer science, internet
Classification: CCS: C.5.3 Micr ,
Subject headings (SWD): Speicherverwaltung , Malware , Computerforensik
Individual keywords (German): Windows , PTE
Keywords (English): Windows , PTE , Pagefault
Abstract: This document presents insights from extensive reverse engineering efforts of the memory management mechanisms of Windows XP. The focus lies on (1) the mechanisms which are used to map executable modules into the address space and (2) the role of the page fault handler in this context.
Additional information:

Das Dokument wird vom Publikationsserver der Universitätsbibliothek Mannheim bereitgestellt.




+ Citation Example and Export

Willems, Carsten (2011) Internals of Windows Memory Management (not only) for Malware Analysis. Open Access [Working paper]
[img]
Preview


+ Search Authors in

+ Download Statistics

Downloads per month over past year

View more statistics



You have found an error? Please let us know about your desired correction here: E-Mail


Actions (login required)

Show item Show item