Over the past couple of years the Guidance Software EnCase consultants and trainers have provided advice and assistance concerning how to manage the digital artifacts from RAM or memory analysis when using Volatility as their tool of choice. The two blog posts below provide insight into the progress.
Showing posts with label Volatility. Show all posts
Showing posts with label Volatility. Show all posts
Brand New & Improved Volatility Reporting Plugin
Over the past couple of years the Guidance Software EnCase consultants and trainers have provided advice and assistance concerning how to manage the digital artifacts from RAM or memory analysis when using Volatility as their tool of choice. The two blog posts below provide insight into the progress.
- On: 3/26/2014
- No comments
-
- Categories: EnCase App Central , Integration , Memory Analysis , Volatility
Volatility Reporting Plugin for EnCase Forensic v7
As most investigators know, volatile memory contains valuable information about the runtime state of the system, registry keys, network connections in memory and much more. One of the most popular tools to handle memory analysis is Volatility, an open source tool created by Volatile Systems.
- On: 8/07/2013
- No comments
-
- Categories: EnCase App Central , EnCase Forensic , Memory Analysis , Volatility
