Basil Alawi S.Taher has posted a nice overview of how to start using VolUtility – a web frontend for Volatility framew…

Joshua James has published a video-tutorial on how to build Linux kernel profiles for memory forensics with Volatility. He n…

PassMark Software has released a beta version of Volatility Workbench – a graphical user interface (GUI) for the Volat…

Richard Davis has posted a video introduction to memory forensics, which includes a sample exercise using Volatility 2.6 to …

Redline version 1.20 introduces support for collection from and analysis of Window 10 systems and is already available for d…

Guys, we have created a Telegram group, where we will do our best to answer all your questions. We will be very happy if you…

Travis Smith has published a post about fileless malware on The State of Security. He notes that this type of malware isn…

Stephanie Archibald from Cylance has written an article about the execution of multi-stage payloads on Mac OS X (up to Sierr…

Virtual Machine Introspection (VMI) is an approach to inspecting and analyzing the software running inside a virtual machine…

So you think you might have a compromised Windows system. If you do, where do you start? How would you review the memory of …