Posts tagged as:

Volatility Framework

SIFT: SANS Investigative Forensic Toolkit

by Black on July 2, 2009 · 0 comments

in Forensics, Security tools, Windows

Now a days, we are focussing a lot on forensics. There are many tools that are specialized for computer forensics. SIFT is one such tool or should we say operating system that performs all that you want with computer forensics with ease. SIFT stands for SANS Investigative Forensic Toolkit.
It is a VMware Appliance that is preconfigured [...]

Tagged as: , , , ,

{ 0 comments }

The Volatility Framework: Analyze Volatile Memory

by Black on July 1, 2009 · 0 comments

in Forensics, Open Source, Security tools, Windows

No fancy words. Just plain english. The Volatility Framework is THE application suite you need to analyze volatile memory. What is volatile memory? It is the RAM.
It is an open source, Python based extensible framework for conducting analysis on memory images. It supports flat file images, crash dump files, and hibernation files and will run [...]

Tagged as: , ,

{ 0 comments }