{"product_id":"automated-virtual-machine-introspection-for-brett-a-pagel-9781249836421","title":"Automated Virtual Machine Introspection for Host-Based Intrusion Detection","description":"This thesis examines techniques to automate configuration of an intrusion detection system utilizing hardware-assisted virtualization. These techniques are used to detect the version of a running guest operating system, automatically configure version-specific operating system information needed by the introspection library, and to locate and monitor important operating system data structures. This research simplifies introspection library configuration and is a step toward operating system independent introspection. An operating system detection algorithm and Windows virtual machine system service dispatch table monitor are implemented using the Xen hypervisor and a modified version of the XenAccess library. All detection and monitoring is implemented from the Xen management domain.\u003cbr\u003e\u003cbr\u003e\u003cb\u003eAuthor:\u003c\/b\u003e Brett A. Pagel\u003cbr\u003e\u003cb\u003eISBN-10:\u003c\/b\u003e 1249836425\u003cbr\u003e\u003cb\u003eISBN-13:\u003c\/b\u003e 9781249836421\u003cbr\u003e\u003cb\u003ePublisher:\u003c\/b\u003e Biblioscholar\u003cbr\u003e\u003cb\u003eLanguage:\u003c\/b\u003e English\u003cbr\u003e\u003cb\u003ePublished:\u003c\/b\u003e 10\/17\/2012\u003cbr\u003e\u003cb\u003ePages:\u003c\/b\u003e 106\u003cbr\u003e\u003cb\u003eFormat:\u003c\/b\u003e Paperback\u003cbr\u003e\u003cb\u003eWeight:\u003c\/b\u003e 0.35lbs\u003cbr\u003e\u003cb\u003eSize:\u003c\/b\u003e 9.21h x 6.14w x 0.22d","brand":"Brett A. Pagel","offers":[{"title":"Paperback","offer_id":48449383071999,"sku":"9781249836421","price":17.95,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0662\/2982\/9887\/files\/img_189fe4fd-e83a-4cfb-a00d-a91a71ad7178.jpg?v=1777263140","url":"https:\/\/www.whiterainbookhouse.com\/products\/automated-virtual-machine-introspection-for-brett-a-pagel-9781249836421","provider":"WR Book House","version":"1.0","type":"link"}