TY  - CHAP
A1  - Logen, Steffen
A1  - Höfken, Hans
A1  - Schuba, Marko
T1  - Simplifying RAM Forensics : A GUI and Extensions for the Volatility Framework
T2  - 2012 Seventh International Conference on Availability, Reliability and Security (ARES), 20-24 August 2012, Prague, Czech Republic
N2  - The Volatility Framework is a collection of tools for the analysis of computer RAM. The framework offers a multitude of analysis options and is used by many investigators worldwide. Volatility currently comes with a command line interface only, which might be a hinderer for some investigators to use the tool. In this paper we present a GUI and extensions for the Volatility Framework, which on the one hand simplify the usage of the tool and on the other hand offer additional functionality like storage of results in a database, shortcuts for long Volatility Framework command sequences, and entirely new commands based on correlation of data stored in the database.
Y1  - 2012
SN  - 978-1-4673-2244-7
U6  - http://dx.doi.org/10.1109/ARES.2012.12
SP  - 620
EP  - 624
PB  - IEEE
CY  - New York
ER  - 
TY  - JOUR
A1  - Schuba, Marko
A1  - Höfken, Hans
T1  - Backtrack5: Datensammlung und Reporterstellung für Pentester mit MagicTree / Höfken, Hans ; Schuba, Marko
JF  - Hakin9. 73 (2012), H. 3
Y1  - 2012
SN  - 1733-7186
SP  - 12
EP  - 16
PB  - -
ER  -