About the author
Matthieu Suiche matt[at]msuiche(.)net (born September 22 1988 in France) is a French passionate in security field especially in Reverse Engineering also know for his enthusiastic personality and his motivations. He is currently involved in Samba project through Google Summer of code.
Tools :
win32dd - a kernel land physical memory dumper
Sandman - a windows hibernation file reader and writer.
Lectures
Windows hibernation file for fun and profit - Blackhat Las Vegas, 2008
Enter SandMan - PacSec 2007, Japan - English
Enter SandMan - PacSec 2007, Japan - Japanese
Publications
SandMan White Paper (February, 2008)
Windows Vista and unexported kernel symbols (Part II, 32bits version) (January 31, 2007)
Windows Vista and unexported kernel symbols (Part I, 64bits version) (January 1, 2007)