Online Training Special Offer: iPad Pro w/ Smart Keyboard, Surface Pro or $350 Off

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

VMRay Analyzer, agentless malware analysis and rapid incident response: A SANS Product Review

  • Wednesday, March 14th, 2018 at 1:00 PM EST (17:00:00 UTC)
  • Matt Bromiley and Chad Loeven
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

Sponsor

  • VMRay

You can now attend the webcast using your mobile device!

Overview

Incident response cases move fast. Analysts typically collect data from all corners of the enterprise, from registry hives to logs to malware samples. And while teams are good at collecting malware samples, many dont have dedicated reverse engineers to turn those samples into actionable intelligence. Its time to change course.

VMRay wants to transform automated malware analysis with its agentless hypervisor-based approach. SANS analyst, instructor, and incident responder Matt Bromiley has tested VMRay Analyzer and put it through its paces. In this webcast and paper, he shares his experience with the product, including:

  • Ease of use, including product layout and barriers to success
  • Efficiency of the rapid reputation engine to determine file maliciousness
  • Integration with IR team workflows and third-party products
  • How VMRay Analyzer handles multiple malware samples to provide quick and actionable answers to incident responders.

Attend this webcast to see how VMRay Analyzer can become an integral part of your incident response team and be among the first to receive the associated white paper.

View the associated white paper here.

Speaker Bios

Matt Bromiley

Matt Bromiley, is a SANS Digital Forensics and Incident Response instructor and a GIAC Advisory Board member. He is also a senior managing consultant at a major incident response and forensic analysis company, bringing together experience in digital forensics, incident response/triage and log analytics. His skills include disk, database, memory and network forensics, as well as network security monitoring. Matt has worked with clients of all types and sizes, from multinational conglomerates to small, regional shops. He is passionate about learning, teaching and working on open source tools.


Chad Loeven

Chad has been involved in enterprise security for over 20 years. Prior to VMRay he managed technology alliances at RSA, the security division of EMC. He came on board RSA via its acquisition of Silicium Security and Silicium's ECAT ETDR (Endpoint Threat Detection and Response) technology, where he ran sales and marketing. Prior to joining Silicium, he ran Sunbelt Software's Advanced Technology Group (ATG), bringing to market the CWSandbox malware analyzer and Sunbelt's ThreatTrack threat intel feeds. Sunbelt was acquired by GFI, and is now ThreatTrack Security. As president of VMRay Inc. he oversees operations and all sales and marketing activities worldwide outside of Europe.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.