Posts Tagged ‘Volatility Plugin’

Most Recent
 
Read More
2018-03-26

How to detect proxies and network traffic with Volatility

There are several options for how to solve the effect of an opaque proxy server on network connections. This blog is obsessed with how you can solve this problem by volatility and lines.

286
 
Read More
2017-12-31

Volatility plugin to extract BitLocker Full Volume Encryption Keys

Computer attacks constantly worry administrators and computer users. Earlier we already talked about volatility.

Plugin for the platform Volatility Framework, whose goal is to extract the encryption keys Full Volume Encryption Keys (FVEK) from memory. It works from Windows 7 to Windows 10. Unfortunately, the support for Windows 8 – 10 is very experimental, but it works in most cases with a few quirks.

1230
 
Read More
2017-12-14

Attack encrypted systems overview

Encryption was originally used only for the transfer of confidential information. However, subsequently the information was encrypted for the purpose of storing it in unreliable sources.

81
 
Read More
2017-11-26

Volatility Workbench Overview

Volatility is a well know collection of tools used to extract digital artifacts from volatile memory (RAM). PassMark Software has released Volatility Workbench to aid the use of Volatility with OSForensics.

 

401
Latest Headlines
 
Read More
566
 
Read More
328
 
Read More
653

Trending Topics
digital forensics
computer forensics
Articles
mobile forensics
DFIR
digital forensics software
Android forensics
windows forensics
incident response
Top Stories
 
 
Right Now
 
bstrings 1.0 released
Top Five
Heat Index
 
1
Decrypting encrypted WhatsApp databases without the key
 
2
How to Make the Forensic Image of the Hard Drive
 
3
Extracting data from SmartSwitch backups
 
4
Forensic tools for your Mac
 
5
Android forensic analysis with Autopsy