• GitHub
  • Contact
The Volatility Foundation - Promoting Accessible Memory Analysis Tools Within the Memory Forensics Community
  • The Volatility Framework
  • Training
  • Events
  • FAQ
  • Contest
  • About
  • Blog
Select Page

MoVP 4.4 Cache Rules Everything Around Me(mory)

by Volatility | Oct 5, 2012 | forensics, kernel, movp, volatility, windows

Month of Volatility Plugins After an exciting month of new Volatility plugins and another amazing OMFW ( X volatilesystems.com/default/omfw), we are in the final home stretch. It’s only fitting that we take a moment to fill in some gaps and dispel some myths and...

MoVP 4.3 Recovering Master Boot Records (MBRs) from Memory

by Jamie Levy | Oct 3, 2012 | malware, movp, volatility, windows

Month of Volatility Plugins Given that we are still recovering from an amazing Open Memory Forensics Workshop, today’s post will continue the theme of short and sweet. This post will focus on recovering interesting disk artifacts from memory. In particular, it...

MoVP 4.2 Taking Screenshots from Memory Dumps

by Volatility | Oct 2, 2012 | forensics, kernel, malware, movp, volatility, windows

Month of Volatility Plugins  Open Memory Forensics Workshop 2012 is currently in progress, thus today’s MoVP post will be short and sweet. However, it will still introduce an exciting new capability exclusive to Volatility. One of Brendan Dolan Gavitt’s early...

MoVP 4.1 Detecting Malware with GDI Timers and Callbacks

by Volatility | Oct 1, 2012 | forensics, kernel, malware, movp, volatility, windows

Month of Volatility Plugins  Nearly a year ago, Volatility became the first (and to this date, the only) memory forensics framework to analyze kernel timers for malware analysis. The timers plugin was introduced in two of my older blog posts: ZeroAccess,...
Next Entries »

Volatility Blog Archive

2025

  • + July (1)
  • + May (2)
  • + March (1)

2024

  • + August (1)
  • + July (1)
  • + March (1)

2023

  • + August (1)
  • + July (1)
  • + June (1)
  • + March (1)
  • + February (1)
  • + January (1)

2022

  • + July (1)
  • + February (1)
  • + January (1)

2021

  • + October (1)
  • + August (1)
  • + May (1)
  • + January (1)

2020

  • + November (1)
  • + May (2)

2019

  • + November (1)
  • + October (2)
  • + July (1)
  • + June (1)

2018

  • + November (2)
  • + May (1)
  • + February (1)

2017

  • + November (1)
  • + June (1)
  • + April (1)

2016

  • + December (2)
  • + September (1)
  • + August (2)
  • + July (1)
  • + April (3)

2015

  • + November (2)
  • + October (1)
  • + August (2)
  • + July (2)
  • + June (1)
  • + May (1)
  • + March (1)
  • + February (1)
  • + January (1)

2014

  • + December (1)
  • + October (3)
  • + September (5)
  • + August (6)
  • + July (2)
  • + May (1)
  • + April (2)
  • + February (2)
  • + January (5)

2013

  • + October (3)
  • + September (2)
  • + August (1)
  • + June (9)
  • + May (15)
  • + April (2)
  • + March (2)
  • + February (1)
  • + January (4)

2012

  • + December (2)
  • + November (1)
  • + October (14)
  • + September (19)
bluesky logo
    bluesky logo
    bluesky logo
    bluesky logo
    bluesky logo

    All Content © The Volatility Foundation, a 501(c)(3) Nonprofit Organization.

    All Content © The Volatility Foundation, a 501(c)(3) Nonprofit Organization.

     

    Loading Comments...
     

    You must be logged in to post a comment.