Re: [Vol-users] Volatility's Network Connections
10 May
2009
10 May
'09
10:34 p.m.
Don,
Thanks for the email! By the way, I've been enjoying your recent series
of posts on memory analysis.
One of the things we emphasize in training is the importance of not just
being a tool user but actually understanding the different techniques that
are used for memory analysis. That was a major motivation for making
Volatility open source.
As for the conflicting information, do you believe that the information
presented by Volatility is incorrect or incomplete? Or are you wondering
why the other tools are not enumerating the information you seek?
Thanks,
AW
On Wed, 6 May 2009, Don C. Weber wrote:
I wanted to let you know that while using
Volatility and several other
memory analysis tools I received some conflicting information associated with
network connections. I did a quick blog post on the subject that can be read
here: http://www.cutawaysecurity.com/blog/archives/523 . It looks like
Volatility shows more information than the others in some instances.
Also, if you have additional information or detail on this please post a
comment or let me know so that I can add an update to the post.
--
--------------------------
Don C. Weber
Information Security Consultant
Cutaway Security
CISSP, GIAC
#########################################
Website: http://www.cutawaysecurity.com
_______________________________________________
Vol-users mailing list
Vol-users(a)volatilityfoundation.org
http://lists.volatilityfoundation.org/mailman/listinfo/vol-users