New Paper: In Lieu of Swap: Analyzing Compressed RAM in Mac OS X and Linux
by Volatility | Aug 14, 2014 | linux, macosx, volatility
A research paper (slides here) ( X dfrws.org/2014/proceedings/presentations/DFRWS2014-p1.pdf) that I worked on with Golden G. Richard was recently published at DFRWS 2014 ( X dfrws.org/2014/program.shtml) and received the Best Paper award! The paper, In Lieu of Swap:...Presenting Volatility Foundation Volatility Framework 2.4
by Volatility | Aug 13, 2014 | artofmemoryforensics, blackhat, kernel, linux, macosx, malware, truecrypt, volatility, win8
The release of this new Volatility version coincides with the publication of The Art of Memory Forensics. It adds support for Windows 8, 8.1, 2012, and 2012 R2 memory dumps, Mac OS X Mavericks (up to 10.9.4), and Linux kernels up to 3.16. New plugins include the...The Art of Memory Forensics
by Volatility | Jan 7, 2014 | artofmemoryforensics, forensics, kernel, linux, macosx, malware, training, volatility, windows
By now, some of you may have realized that The Art of Memory Forensics is available for pre-order on Amazon. The Art of Memory Forensics: Detecting Malware and Threats in Windows, Linux, and Mac Memory This book is written by 4 of the core Volatility developers...Volatility 2.3 Released! (Official Mac OS X and Android Support)
by Volatility | Oct 25, 2013 | android, forensics, macosx, volatility
The Volatility Foundation is thrilled to announce the official release of Volatility 2.3! While the main goal of this release was Mac OS X (x86, x64) and Android Arm support, we also included a number of other exciting new capabilities! Highlights of this release...Results are in for the 1st Annual Volatility Framework Plugin Contest!
by Volatility | Aug 21, 2013 | contest, forensics, linux, macosx, malware, windows
We are excited to announce the results of the 1st Annual Volatility Plugin Contest. We were pleasantly surprised with 8 submissions to the contest. Each submission provides an exciting new capability to the memory analysis community or demonstrates the power of...
You must be logged in to post a comment.