This presentation went over a number of the new Linux plugins and showed how to use them when investigating Linux kernel rootkits. All of the plugins and functionality shown is part of the 2.2 Volatility release.
Author/Presenter: Andrew Case / @attrcĀ
Direct Link: Analyzing Linux Kernel Rootkits with Volatility
( X docs.google.com/file/d/0B_z_5NVxqgMKTDBYNXptclpIY1U/preview)