×

Physical Memory Forensics System and Method

  • US 20140032875A1
  • Filed: 07/27/2012
  • Published: 01/30/2014
  • Est. Priority Date: 07/27/2012
  • Status: Active Grant
First Claim
Patent Images

1. A method to determine whether a computer system has been compromised, the method comprising the steps of:

  • traversing a virtual address descriptor to acquire complete process data; and

    reconstructing mapped binary data based on the acquired complete process data.

View all claims
  • 10 Assignments
Timeline View
Assignment View
    ×
    ×