CANVAS Lightning Demo: D2 Drosera Live Forensics

[Alex McGeorge <alexm () immunityinc com>]

List,

Dave asked me to work a bit of his character's special move* on the list
today. One of our long time CANVAS Exploit Pack developers has released
a pretty interesting tool that's a bit outside the usual scope of what
people expect with CANVAS. Drosera from D2** is a live forensics toolkit
that fits on a USB drive (with gigs to spare) and is completely self
contained. It's a handy thing to have in your incident response toolkit,
it is completely independent of CANVAS so fewer worries about setting
off your AV/HIDS/HIPS/HOPS when you use it. Aimed at rootkit detection,
it has a variety of methods to determine if something sneaky is going
on. Come check it out and see it in action against the CANVAS HCN Rootkit.

---------
* http://www.immunityinc.com/immunityclash.shtml
** http://www.d2sec.com/products.htm

Immunity will be holding a Lightning Demo on, October 19th at 3:00p
EDT (UTC - 4), we expect the demo to last between 15 and 20 minutes.
Space is limited to 20 and invites will be issued on a first come /
first served basis. All invites will be sent no later than 2:00p today,
October 19th.

To request an invite please send mail to:
lightning.demos () immunityinc com with the subject of 'D2 Drosera'

If you're unable to attend or wish to see previous demos please see:
http://www.immunityinc.com/webex.shtml a recording will be posted after
the demo is concluded.

If you'd like to check that your config is compatible with WebEx please
visit: http://www.webex.com/lp/jointest/


Cheers,
-AlexM


-- 
Alex McGeorge
Immunity Inc.
1130 Washington Avenue 8th Floor
Miami Beach, Florida 33139
P: 212.534.0857

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave