DFSP # 421 - Memory Lane: Fileless Linux Attacks Unraveled

12/03/2024 25 min

Listen "DFSP # 421 - Memory Lane: Fileless Linux Attacks Unraveled"

Descargar episodio Ver en sitio original

Episode Synopsis

In this podcast episode, we talk about Linux's `memfd` – a virtual file system allowing the creation of anonymous memory areas for shared memory or temporary data storage. Threat actors exploit `memfd` for fileless malware attacks, as its memory areas exist only in RAM, evading traditional file-based detection methods. Join me as I `memfd` as a forensic artifact, its implications in DFIR, and strategies for detecting its abuse.

More episodes of the podcast Digital Forensic Survival Podcast

DFSP # 499 Linux top 10 09/09/2025

DFSP # 498 Windows top 10 02/09/2025

DFSP # 497 ticket to ride 26/08/2025

DFSP # 496 Signed, Sealed, Exploited 19/08/2025

DFSP # 495 Corrupted from within 12/08/2025

DFSP # 494 the request is out there 05/08/2025

DFSP # 493 Stop, Share, and Listen 29/07/2025

DFSP # 492 A Bit of TCP 22/07/2025

DFSP # 491 INF-ltration: The Subtle Art of “Fetch and Execute” 15/07/2025

DFSP # 490 Unveiling the USN Journal 08/07/2025

Ver todos los episodios

ZARZA We are Zarza, the prestigious firm behind major projects in information technology.

DFSP # 421 - Memory Lane: Fileless Linux Attacks Unraveled

Listen "DFSP # 421 - Memory Lane: Fileless Linux Attacks Unraveled"

Episode Synopsis

More episodes of the podcast Digital Forensic Survival Podcast

Bandwidth: Broadband or Narrowband?

Personnel recruitment via Web

Bandwidth: Broadband or Narrowband?

Personnel recruitment via Web

Deep web or Invisible Internet

Subdomains, a glance with the experts!

Free Internet, a prediction in Nostradamus style

Educational Technology: From traditional to digital

Localhost, there’s no place like 127.0.0.1

Googling with breathtaking tricks you ignore

Gray Hat Hacking, those with ambiguous ethics…

Internet Predators on the prowl

Dot COM: The Internet’s dominant TLD