Hello volatile users,
It's my first post, I'm not in the forensics Industry, I'm more like a
I'm very impressed with volatile system. Amazing project.
Someone know if there any any plan to add support to Windows 2003 in
Volatility? It should be awesome.
Speaking a bit about acquiring data. I use mdd in general. However I
always only copy a small amount of ram (256 mb in average), because
try copy the whole system memory result in crashes. There is anyway to
copy most data as possible without disrupt windows? In general, how do
you deal with this problem?
I'm currently working on a forensic aquisition tool to get live data from a running system. I want to extend the tool with volatility and therefore make the tool independent from an installed python on the system volatility is executed. What's the best possibility to have a "mobile" volatility? I tried py2exe but it is not trivial to include all the needed modules and dlls needed to run volitility correct. Currently the volatility-exe created with py2exe is only running when python is installed on the system. Has somebody a better idea to create a mobile volatility or a setup.py for py2exe that works?
Neu: GMX FreeDSL Komplettanschluss mit DSL 6.000 Flatrate + Telefonanschluss für nur 17,95 Euro/mtl.!* http://dsl.gmx.de/?ac=OM.AD.PD003K11308T4569a