Netinfo Security

Previous Articles     Next Articles

Research on APT-Trojan Forensics based on Virtual Machine and API Monitor

ZHU Ping%DU Yan-hui   

  • About author:中国人民公安大学,北京,100038

PDF (PC)

777

Abstract: APT attack is the most serious threat to national organization and corporation. Generally,it is controlled by a meticulouslydesigned organization and can hardly be detected. It has advanced,persistent andhigh strategy characteristics.This paper presents a module for APT-TrojanForensic,which is based on Virtual machineand API monitor.