Re: [Vol-users] Need help: Can anyone provide information about plug-ins for volatility framework, especially used for Linux

Hi Yuhang, Welcome to the Volatility users list! While you have been pointed to a wiki of all publicly maintained plugins, some of the Linux code may not be so easy to find. The Linux code for the DFRWS 2008 Forensic Challenge is located in the PyFlag repository: http://www.pyflag.net/pyflag/src/plugins/MemoryForensics/Volatility-1.3_Lin… Further details are available here: http://volatilesystems.blogspot.com/2008/07/linux-memory-analysis-one-of-ma… Some Linux code has been pulled into the 1.4_beta1 branch of the Volatility SVN repository which you can browse at the following: http://code.google.com/p/volatility/source/browse/#svn/branches/Volatility-… or download: svn checkout http://volatility.googlecode.com/svn/branches/Volatility-1.4_beta1/ volatility This branch may not be stable, but you can have a look at the Linux plugins. If you need more help feel free to visit the #volatility channel on freenode (IRC). All the best, -Jamie