Deep Content Inspection - Beyond Executable File Analysis

Presented by

Christopher Kruegel, CEO at Lastline, Inc.

About this talk

Cyber threats have evolved to evade the detection capabilities of traditional security tools. The malware powering botnets/ransomware/IP theft is also breaching networks and systems in new and innovative ways. In order to find these advanced threats, content inspection must move beyond traditional executable file analysis in virtual environments. Observing malware behaviors on a deeper level and using intelligent file detonation are critical to detection. In this presentation by Christopher Kruegel, CEO at Lastline, you’ll learn how a Full System Emulation (FUSE) approach provides improved visibility and enhanced malware detection. Kernel-level object inspection and machine learning are combined to defeat the evasive techniques of malware hiding in documents, email traffic, HTTP web traffic, SMB traffic, and more.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (49)
Subscribers (4955)
Our channel is aimed to give you the full picture. We will educate you on current topics of interest with the Editor of IT Security Guru hosting the webcasts, Dan Raywood. Guest speakers will join in on the debates with their own expert view and no intention of keeping it to themselves. Our aim is to give you all the information you need, for you to be able to come to your own conclusion. http://itsecurityguru.org/