잡동사니/각종 자료들

volatility2,3 cheatsheet

https://blog.onfvp.com/post/volatility-cheatsheet/

 

Volatility 3 CheatSheet

Comparing commands from Vol2 > Vol3

blog.onfvp.com

 

https://book.hacktricks.xyz/forensics/basic-forensic-methodology/memory-dump-analysis/volatility-examples

 

Volatility - CheatSheet - HackTricks

“scan” plugins, on the other hand, will take an approach similar to carving the memory for things that might make sense when dereferenced as specific structures. psscan for instance will read the memory and try to make out _EPROCESS objects out of it (

book.hacktricks.xyz

 

저작자표시 비영리 변경금지

'잡동사니 > 각종 자료들' 카테고리의 다른 글

C# 언패킹  (0) 2022.05.02
Vmware Win7 vmware tools 설치  (0) 2022.04.06
C드라이브 용량 확장  (0) 2021.12.05
점프리스트 ID 값 목록(Jumplist ID)  (0) 2021.11.13
텔레그램 메신저 데이터 추출  (0) 2021.10.23

    티스토리툴바