Viviane Zwanger

Researcher at Fraunhofer FKIE

Contact
Phone: +49 228 50212-569
Fax: +49 228 73-4571
Email: zwanger@REMOVETHISPART.cs.uni-bonn.de
Public key: 1008ACC8
   
Address
  Institute of Computer Science 4
Friedrich-Ebert-Allee 144
53113 Bonn
Germany
Room: Zanderstr. 5, 2.21
 

2. OG, Raum 21, Zanderstrasse 5
 

Research Interests

  • Windows kernel drivers.
  • Reverse engineering for Windows in general.
  • Automation of Windows driver reverse engineering.
  • Intel x86/x64 Code
  • APTs and APT recognition.

I am interested in the Windows kernel and everything associated with kernel, drivers and binary code. If you are interested in this topic or would like to do a master thesis here, you can always drop me a line.


Projects


Codescanner's home is now here:

Codescanner submit

Finds x86 code in executables, files, pictures and documents.
Codescanner interface is now SSL (self-signed) -- no need to send me malicious executables in plaintext.

Ressources and data referenced in the Codescanner paper moved to here.


Publications

 

2014

  • Viviane Zwanger, Elmar Gerhards-Padilla, Michael Meier Codescanner: Detecting (Hidden) x86/64 Code in Arbitrary Files. (Best Paper Award) In: the 9th International Conference on Malicious and Unwanted Software. MALCON, Fajardo, Puerto Rico, October 28-30, 2014.


  • Steffen Wendzel, Viviane Zwanger, Michael Meier, Sebastian Szlósarczyk: Envisioning Smart Building Botnets. Sicherheit 2014: 319-329.

2013

  • Viviane Zwanger, Felix Freiling: Kernel mode API spectroscopy for incident response and digital forensics. PPREW@POPL 2013: 3.

2010


Awards


2014

  • MALCON'14, Best Paper Award.

2011

  • Kaspersky European Student Conference, first prize.

  • Kaspersky International Student Conference, second prize.