| 2020-07-27 | Johannes Ullrich | In Memory of Donald Smith |
| 2020-06-04 | Xavier Mertens | Anti-Debugging Technique based on Memory Protection |
| 2016-10-30 | Pasquale Stirparo | Volatility Bot: Automated Memory Analysis |
| 2015-05-03 | Russ McRee | VolDiff, for memory image differential analysis |
| 2015-04-24 | Basil Alawi S.Taher | Fileless Malware |
| 2015-04-17 | Didier Stevens | Memory Forensics Of Network Devices |
| 2014-08-27 | Rob VandenBrink | One More Day of Trolling in POS Memory |
| 2014-03-11 | Basil Alawi S.Taher | Introduction to Memory Analysis with Mandiant Redline |
| 2014-03-07 | Tom Webb | Linux Memory Dump with Rekall |
| 2013-12-12 | Basil Alawi S.Taher | Acquiring Memory Images with Dumpit |
| 2013-05-23 | Adrien de Beaupre | MoVP II |
| 2013-01-03 | Bojan Zdrnja | Memory acquisition traps |
| 2012-09-19 | Kevin Liston | Volatility: 2.2 is Coming Soon |
| 2012-05-07 | Guy Bruneau | iOS 5.1.1 Software Update for iPod, iPhone, iPad |
| 2010-04-02 | Guy Bruneau | Firefox 3.6.3 fix for CVE-2010-1121 http://www.mozilla.org/security/announce/2010/mfsa2010-25.html |
| 2009-07-26 | Jim Clausing | New Volatility plugins |
| 2009-02-05 | Rick Wanner | Mandiant Memoryze review, Hilighter, other Mandiant tools! |
| 2009-01-02 | Rick Wanner | Tools on my Christmas list. |
| 2008-12-13 | Jim Clausing | Followup from last shift and some research to do. |
| 2008-11-22 | G. N. White | Picture Printing Kiosks & Flash Memory Devices |
| 2008-11-17 | Jim Clausing | Finding stealth injected DLLs |
https://www.sans.edu
