LiMEaide is a python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local host. This will simplify Linux digital forensics in a remote environment. In order to use LiMEaide all you need to do is feed a remote Linux client IP address, sit back, and consume your favorite caffeinated beverage, according to the author. Learn more about the tool at Daryl Bennett’s GitHub.
-
Incident Forensics Lifecycle
Recently I’m becoming more and more interested in cyber threat intelligence. I even … -
Shining a light on Spotlight: Leveraging Apple’s desktop search utility to recover deleted file metadata on macOS
Spotlight is a proprietary desktop search technology released by Apple in 2004 for its Mac… -
Load More Related Articles
-
AutoMacTC: Automated Mac Forensic Triage Collector
AutoMacTC is a modular forensic triage collection framework designed to access various for… -
Sysmon-Modular: A Sysmon Configuration Repository for Everybody to Customise
This is a Microsoft Sysinternals Sysmon configuration repository by Olaf Hartong, set up m… -
Recover Deleted Records in Windows.edb with WinSearchDBAnalyzer
WinSearchDBAnalyzer by Jeonghyeon Kim can parse normal records and recover deleted records…
Load More In Software
