Introducing Project Freta
Project Freta is a free, cloud-based offering from the New Security Ventures (NSV) team at Microsoft Research that provides automated full-system volatile memory inspection of Linux systems.
Please visit our launch announcement at https://aka.ms/freta for more information about the offering's motivation and long-term goals.
Detect novel malicious software, kernel rootkits, process hiding, and other intrusion artifacts via agentless operation by operating directly on captured VM snapshots
Memory inspection means no software to install, no notice to malware to evacuate or destroy data
Designed for automating IR-like discovery tasks directly into a cloud fabric -- though volatile memory snapshots captured from an acquisition tool can also be used for bare iron scenarios where virtualization is not available