Documentation‎ > ‎

Publications and Presentations

The following papers and presentations were published by the Rekall Team in various conferences and scientific journals. These papers describe some of the deep research and novel solutions developed and implemented within the Rekall framework.
Showing 11 items
TypeFileDescriptionDate
Sort 
 
Sort 
 
Sort 
 
Sort 
 
TypeFileDescriptionDate
Paper Anti-Forensic Resilient Memory Acquisition. Anti-Forensic Resilient Memory Acquisition. Johannes Stuttgen and Michael Cohen. The proceedings of The Digital Forensic Research Conference DFRWS 2013 USA  August 3, 2013 
Paper Robust Linux Memory Acquisition with Minimal Target Impact.  Robust Linux Memory Acquisition with Minimal Target Impact. Johannes Stuettgen and Michael Cohen. The proceedings of The Digital Forensic Research Conference DFRWS 2014 EU Amsterdam, NL  July 1, 2014 
Paper Forensic Analysis of Windows User space Applications through Heap allocations. Forensic Analysis of Windows User space Applications through Heap allocations. Michael Cohen. 3rd IEEE International Workshop on Security and Forensics in Communication Systems 2015  July 1, 2015 
Paper Characterization Of The Windows Kernel Version Variability For Accurate Memory Analysis. Characterization Of The Windows Kernel Version Variability For Accurate Memory Analysis. Michael Cohen. The proceedings of The Digital Forensic Research Conference DFRWS 2015 EU Dublin, Ireland  July 1, 2015 
Presentation Forensic Reverse Engineering with Rekall Workshop notes DFRWS 2015 Workshop. Reverse engineering a windows application using Rekall. August 2, 2015 
Presentation Forensic Reverse Engineering with Rekall Solutions DFRWS 2015 Workshop. Reverse engineering a windows application using Rekall. August 2, 2015 
Paper Automatic profile generation for live Linux Memory analysis. Automatic profile generation for live Linux Memory analysis. Arkadiusz Socała, Michael Cohen. DFRWS 2016 Europe d Proceedings of the Third Annual DFRWS Europe  August 3, 2016 
Presentation DFRWS2016_Rekall_Workshop.pdf Using GRR and Rekall for Scalable Memory Analysis August 10, 2016 
Paper Scanning memory with Yara Cohen, M., 2017. Scanning memory with Yara. Digital Investigation, 20, pp.34-43.  January 1, 2017 
Presentation Rekall Workshop DFRWS 2017.pdf DFRWS 2017: Rekall Everywhere - DFIR in the Cloud Workshop August 9, 2017 
Presentation Rekall Agent OSDFCon 2017.pdf Open Source Digital Forensics Conference 2017 https://www.osdfcon.org/2017-event/2017-abstracts/#RekallAgent October 17, 2017 
Showing 11 items