Rajesh Mony Webroot
download slides (PDF)
The topics covered are:
- Parser-level heuristics and transformed parse signatures.
- Document fingerprinting/matching for variants matching.
- Methods of reducing parse trees/seeding to eliminate anti-debugging and incomplete scripts.
- Effective DOM emulation and JS engine run issues to decode scripts.
- Techniques for late inspection of variables and at point of scope exit.
- Shellcode analysis tuned to JS embedded shellcodes.