Andrey Bazhan, from Comae Technologies, just made a neat addition to SwishDbgExt which is the ability to use Yara rules to hunt process in memory via a new command called !ms_yarascan
!ms_yarascan
TL;DR; Detect DLL injection with Comae Stardust. #MemoryForensics #Blockchain
Shakacon (Honolulu, HI) — 12 July, 2017Porosity: A Decompiler For Blockchain-Based Smart Contracts Bytecode (Matt Suiche)Deep dive into Ethereum Smart-Contracts