|
Message-ID: <CAG4AFWbVm+6a2GO0iPa6r84bP1jNfL6Rph4a1HDj6cDt-8y2Fw@mail.gmail.com>
Date: Fri, 10 Feb 2017 16:18:36 -0700
From: Jidong Xiao <jidong.xiao@...il.com>
To: Matthew Giassa <matthew@...ssa.net>
Cc: kernel-hardening@...ts.openwall.com, KVM <kvm@...r.kernel.org>
Subject: Re: Introduction + new project: "rootkit detection using virtualization".
Sorry, I have to resend this again, as the original two emails were blocked
because of the url.
"Rootkit detection using virtualization" has been widely studied for a
decade. Is the approach you are going to use different from all of these
existing ones:
"Survey: Virtual Machine Introspection Based System Monitoring and Malware
Detection Techniques" - by Haofu Liao at University of Rochester.
-Jidong
On Fri, Feb 10, 2017 at 3:00 PM, Matthew Giassa <matthew@...ssa.net> wrote:
> Good day,
>
> I am a volunteer developer taking up a project originally proposed by
> Rik van Riel, "rootkit detection using virtualization", and am
> planning to contribute regularly to this project over the coming
> months. I was advised to contact these mailing lists to introduce
> myself, and I also wanted to inquire about any existing projects that
> coincide with this work. My initial work will involved diving into KVM
> + qemu source and deciding how best to approach the problem. While I
> have the attention of list members, are there any specific
> individuals/groups I should contact directly with respect to this type
> of project?
>
> Thank you.
>
> --
> ============================================================
> Matthew Giassa
>
Content of type "text/html" skipped
Powered by blists - more mailing lists
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.