[Vol-dev] The Volatility Framework is now available in FreeBSD ports tree

Hi list, I'm pleased to announce you the Volatility Framework is now available in FreeBSD ports tree in security/py-volatility [1] since tonight. It was possible with efforts of Antoine Brodin and Sofian Brabez. Just make -C /usr/ports/security/py-volatility install clean, then try it with vol.py and a random dump. $ vol.py imageinfo -f /tmp/memory.dmp Volatile Systems Volatility Framework 2.2 Determining profile based on KDBG search... Suggested Profile(s) : Win7SP0x86, Win7SP1x86 AS Layer1 : JKIA32PagedMemoryPae (Kernel AS) AS Layer2 : FileAddressSpace (/tmp/memory.dmp) PAE type : PAE DTB : 0x185000L KDBG : 0x82948c28 Number of Processors : 1 Image Type (Service Pack) : 1 KPCR for CPU 0 : 0x82949c00 KUSER_SHARED_DATA : 0xffdf0000 Image date and time : 2012-05-28 02:57:03 UTC+0000 Image local date and time : 2012-05-27 22:57:03 -0400 Regards -- Sofian Brabez