Memory Forensics and Analysis

Overview

Memory Analysis is the science of using a memory image to determine information about running programs, the operating system, and the overall state of a computer.

Memory Analysis – ForensicsWiki

YouTube Videos

Commercial Courses

SANS FOR526: Memory Forensics In-Depth

Books

The Art of Memory Forensics

Tools

Volatility

Indicators of Expertise

Deep understanding of memory structures, ability to quickly identify indicators of compromise, and ability to find hidden artifacts

Leave a Reply

Your email address will not be published. Required fields are marked *