Re: [Vol-users] Versions 1.3, 1.4 and 2.0
12 Aug
2011
12 Aug
'11
7:06 p.m.
Hey Jim,
Simply put, 2.0 includes all of the worthwhile plugins from previous
releases (although some may have changed names) but not the malware plugins
which have always been separate. However, all malware plugins are in a
single file which you can download into your plugins directory from
http://malwarecookbook.googlecode.com/svn/trunk/malware.py. So if you grab
2.0 and malware.py, then you'll have the fullest feature set. In particular,
you'll have everything mentioned here:
http://code.google.com/p/volatility/wiki/FeaturesByPlugin
And everything described here:
http://code.google.com/p/volatility/wiki/CommandReference
Darren - glad you've had stellar luck so far, that's great!
MHL
On Fri, Aug 12, 2011 at 6:44 PM, Darren Spruell <phatbuckett(a)gmail.com>wrote:
On Fri, Aug 12, 2011 at 3:30 PM, macubergeek
<macubergeek(a)comcast.net>
wrote:
I'm new to volatility and recently completed
a SANS course which taught
v. 1.3.
I'm trying to straighten out in my head the
different sets of plugins
that come with each version. It looks like v. 2.0
absorbed some older third
party plugins but didn't absorb others like malfind.py and the other malware
related third party plugins. Am I right here?
Kinda sorta not really almost. malfind.py for example while not
"absorbed" (it's never been included natively that I recall) functions
well under 2.x. Satisfy dependencies and place in plugins dir.
2.0 has been stellar in my own use.
--
Darren Spruell
phatbuckett(a)gmail.com
_______________________________________________
Vol-users mailing list
Vol-users(a)volatilityfoundation.org
http://lists.volatilityfoundation.org/mailman/listinfo/vol-users
Attachments:
- attachment.html (text/html — 2.6 KB)