Practical Memory Forensics by Svetlana Ostrovskaya & Oleg Skulkin
Author:Svetlana Ostrovskaya & Oleg Skulkin
Language: eng
Format: epub
Publisher: Packt
Published: 2022-12-15T00:00:00+00:00
As you have already noticed, there are various types of timelines. We will talk about those that can be built using memory dumps.
Filesystem-based timelines
This timeline is based on filesystem metafiles. For NTFS, this file would be, for example, the Master File Table ($MFT). This file contains information about all files of the filesystem and their timestamps.
To build a timeline based on $MFT, first, we need to get its data. This can be done with the Volatility mftparser plugin, which collects all $MFT entries from memory. Running this plugin will look like this:
Download
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.
Cryptography | Encryption |
Hacking | Network Security |
Privacy & Online Safety | Security Certifications |
Viruses |
Future Crimes by Marc Goodman(3002)
Mastering Python for Networking and Security by José Manuel Ortega(2952)
Blockchain Basics by Daniel Drescher(2892)
Mastering Bitcoin: Programming the Open Blockchain by Andreas M. Antonopoulos(2514)
From CIA to APT: An Introduction to Cyber Security by Edward G. Amoroso & Matthew E. Amoroso(2483)
Practical Threat Detection Engineering by Megan Roddie & Jason Deyalsingh & Gary J. Katz(2387)
The Art Of Deception by Kevin Mitnick(2300)
Effective Threat Investigation for SOC Analysts by Yahia Mostafa;(2239)
The Code Book by Simon Singh(2211)
Machine Learning Security Principles by John Paul Mueller(1941)
Practical Memory Forensics by Svetlana Ostrovskaya & Oleg Skulkin(1926)
Wireless Hacking 101 by Karina Astudillo(1849)
DarkMarket by Misha Glenny(1847)
Hands-On AWS Penetration Testing with Kali Linux by Benjamin Caudill & Karl Gilbert(1847)
Applied Network Security by Arthur Salmon & Michael McLafferty & Warun Levesque(1840)
Mobile Forensics Cookbook by Igor Mikhaylov(1814)
Serious Cryptography: A Practical Introduction to Modern Encryption by Aumasson Jean-Philippe(1809)
Solidity Programming Essentials by Ritesh Modi(1808)
Bulletproof Android: Practical Advice for Building Secure Apps (Developer's Library) by Godfrey Nolan(1671)