MOVP II – 1.5 – ARM Address Space (Volatility and Android / Mobile)
by Volatility | May 20, 2013 | android, linux, movp
In order to support Android, Volatility now includes an ARM address space. This is the first new hardware architecture supported by Volatility since the inclusion of Intel support in the earliest of releases. The creation of the address space was based upon the ARM...Android Application (Dalvik) Memory Analysis & the Chuli Malware
by Volatility | Apr 1, 2013 | android, forensics, malware, volatility
This blog serves to highlight a recent collaborative effort between myself and Joe Sylve and Vico Maziale of 504ensics Labs. In this effort, we added to Volatility the capability to perform deep, per-application analysis of running Android applications. Each...OMFW 2012: Datalore: Android Memory Analysis
by Volatility | Oct 12, 2012 | android, forensics, kernel, linux, omfw, volatility
This presentation went over the Android specific analysis capabilities of Volatility as well as showed how to use LiME to capture physical memory from Android devices. This functionality will be included in the 2.3 Volatility release. Author/Presenter: Joe Sylve /...
You must be logged in to post a comment.