Contact Us

Products
- USM Platform
  
  USM Anywhere
  
  Threat detection, incident response, and compliance in a single platform
  
  Get quote Explore demo
  
  USM for MSSPs
  
  Create a managed security service offering with AlienVault USM
  
  Get quote
- Managed Services
  
  AT&T Managed Threat
  Detection and Response
  
  24X7 security monitoring from AT&T Cybersecurity
  
  Get quote
  
  AT&T Global Security Gateway
  
  Web and Internet security for SD-WAN, mobility, and cloud
  
  Partner-Managed Solutions
  
  Get managed services from a certified AT&T Cybersecurity MSSP
- Consulting Services
  
  Cybersecurity IQ Training
  
  Measure and improve your org’s cybersecurity awareness
  
  External Vulnerability Scanning
  
  Reduce risk and work towards compliance
  
  Penetration Testing
  
  See how your security holds up to real-world scenarios while working towards compliance
  
  Risk-based Cyber Posture Assessment
  
  Get a quick assessment and make plans to address gaps
- Free Services and Tools
  
  Open Threat Exchange
  
  Join the world’s largest open threat intelligence community
  
  OSSIM
  
  Open source SIEM trusted by thousands of users
Solutions
- See All Solutions
Compliance
- Overview
- GDPR
- HIPAA
- ISO 27001
- PCI DSS
- SOC 2
Industry
- Financial Services
- Education
- Energy Sector
- Federal
- Healthcare
- MSSPs
- Retail
Environment
- Network
- AWS
- Azure
- Hybrid
Core Capabilities
View All Solutions ⟶
Partners
Become a Partner
Find a Partner
Marketplace Partners
Technology Partners
- USM Anywhere Integrations
- OTX Partners
Become A Partner ⟶
Resources
- View All Resources
- Blogs
Product Resources
Security Resources
- Analyst Reports
- Blogs
- eBooks
- Videos
- Webcasts
- Whitepapers
Customer Resources
Browse by Topic
View All Resources ⟶
AT&T Alien Labs
Support

Online demo

Alien Labs

Ossim: Shellcode Detection and Analysis

March 10, 2009 | Jaime Blasco

I’m glad to announce a new feature we have added to forensic console. We use libemu to make shellcode detection and analysis to help on forensic analysis and reduce false positives, an example:

About the Author: Jaime Blasco

Jaime Blasco is a renowned Security Researcher with broad experience in network security, malware analysis and incident response. At AT&T Cybersecurity, Jaime leads the Alien Labs Intelligence and Research team that leads the charge of researching and integrating threat intelligence into detection mechanisms. Prior to working at AT&T, Jaime was Chief Scientest at AlienVault. Prior to that, he founded a couple of startups (Eazel, Aitsec) working on web application security, source code analysis and incident response. He is based in San Francisco. Jaime's work in emerging threats and targeted attacks is frequently cited in international publications such as New York Times, BBC, Washington Post and Al Jazeera.

Read more posts from Jaime Blasco ›

TAGS: ossim, attacks, libemu, directives, correlation, shellcodes

‹ BACK TO ALL BLOGS

Watch a Demo ›

Get Price Free Trial