The 2.4 Edition features an updated Windows page, all new Linux and Mac OS X pages, and an extremely handy RTFM-style insert for Windows memory forensics.
This site is an archive of the Volatility Labs blog. The blog has moved to https://volatilityfoundation.org/volatility-blog/
Monday, August 18, 2014
New Volatility 2.4 Cheet Sheet with Linux, Mac, and RTFM
Our Windows Malware and Memory Forensics Training class is intense and rigorous, because its designed to reflect real world investigations. When you have a limited amount of time and you're being pressured for reliable answers - every minute counts. Sometimes you just gotta cheat...and when you do, you might as well use an Official Volatility Memory Analysis Cheat Sheet!
The 2.4 Edition features an updated Windows page, all new Linux and Mac OS X pages, and an extremely handy RTFM-style insert for Windows memory forensics.
For in-depth examples and walk-throughs of using the commands in this cheat sheet, make sure to get your copy of The Art of Memory Forensics!
The 2.4 Edition features an updated Windows page, all new Linux and Mac OS X pages, and an extremely handy RTFM-style insert for Windows memory forensics.
Thanks a lot for the update. Is there a chance that you and your colleagues will come to Europe next time so that we can visit your training course?
ReplyDeleteWe are currently planning another course in Europe. Most likely it will be in Amsterdam in July 2015.
ReplyDelete@chr1sko1 the schedule is now posted on http://www.memoryanalysis.net/#!memory-forensics-training/c1q3n
ReplyDelete