Volatility: Proxies and Network Traffic
Marcus Bakker from MB Secure has published a tutorial on how to catch malware beaconing from an infrastructure where a non-t…
Finding Metasploit’s Meterpreter Traces with Memory Forensics
Metasploit Framework is very popular not only among pentesters, but also quite often used by real adversaries. So why memory…
Volatility Profiles and Windows 10
As of the recording of this video, the current version of Volatility is 2.6; however, even if you have this version installe…
The Power of Logging in Incident Response
In this post Brad Garnett writes about the importance of logging in incident response. Brad mentions such important digital …
Learning Malware Analysis
Packt Publishing has announced “Learning Malware Analysis“ by Monappa K A. The book is expected to be published …
SANS DFIR Updated Memory Forensics Cheat Sheet
Memory Forensics Cheat Sheet by SANS DFIR has been updated. The authors added new plugins like hollowfind and dumpregistry, …
MemTri: A Memory Forensics Triage Tool Using Bayesian Network and Volatility
This work explores the development of MemTri. A memory forensics triage tool that can assess the likelihood of criminal acti…
Memory Forensics in Clouds and Containers
Alex Maestretti has published an interesting post about userland memory acquisition and targeted analysis of memory at proce…
AUMFOR – Automatic Memory Forensics
AUMFOR is a GUI based tool which can help a digital forensic investigator by performing all complex and tedious work automat…
Introduction to Redline
As a continuation of the âIntroduction to Memory Forensicsâ series, Richard Davis taking a look at Redline â a free analysis…
