Re: [Vol-users] http://blog.handlerdiaries.com/?p=363

31 Jan 2014

      Jack,

...
  I case anyone is interested I wrote a blog post of the
memory analysis I
 did on Jake Williams ADD tool he presented at Shmoocon.  It can be found
 here http://blog.handlerdiaries.com/?p=363 
Thanks for sharing. Awesome write-up! The volatility fu aside I'm
glad to see that I'm not the only one extracting (ASCII and UNICODE)
strings at the very beginning of almost every investigation...  ;)

Cheers,

	Stefan.

-- 
Stefan Kelm                   &lt;skelm(a)bfk.de&gt;
BFK edv-consulting GmbH       http://www.bfk.de/
Kriegsstrasse 100             Tel: +49-721-96201-1
D-76133 Karlsruhe             Fax: +49-721-96201-99

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Re: [Vol-users] http://blog.handlerdiaries.com/?p=363