Real name: Brendan Dolan-Gavitt
I do research on Memory Analysis, and am an active contributor to Volatility. I presented work describing Virtual Address Descriptors in Windows at DFRWS in 2007, and have continued to work on extracting information from dumps of memory from Windows systems. Much of this work can be found on my blog.
Although I am currently employed at the MITRE Corporation, nothing I say or do here represents them in any way. This fall I will be joining the PhD Computer Science program at Georgia Tech.