Awesome-Mirrors/awesome-incident-response
1
0
Fork 0
mirror of https://github.com/meirwah/awesome-incident-response.git synced 2024-12-25 23:29:30 -05:00
Code Issues Packages Projects Releases Wiki Activity

add Memory Imaging Tools

Browse Source
This commit is contained in:
Meir Wahnon 2015-11-13 21:15:55 +02:00
parent 5a6fabdb3f
commit 94b0259e36
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@ -5,6 +5,7 @@ A curated list of tools for incident response
- [Disk Image Creation Tools](#disk-image-creation-tools) - [Disk Image Creation Tools](#disk-image-creation-tools)
- [Memory Analysis Tools](#memory-analysis-tools) - [Memory Analysis Tools](#memory-analysis-tools)
- [Memory Imaging Tools](#memory-imaging-tools)
## IR tools Collection ## IR tools Collection
@ -23,3 +24,6 @@ A curated list of tools for incident response
* [Responder PRO](http://www.countertack.com/responder-pro) - Responder PRO is the industry standard physical memory and automated malware analysis solution * [Responder PRO](http://www.countertack.com/responder-pro) - Responder PRO is the industry standard physical memory and automated malware analysis solution
* [KnTList](http://www.gmgsystemsinc.com/knttools/) - Computer memory analysis tools * [KnTList](http://www.gmgsystemsinc.com/knttools/) - Computer memory analysis tools
### Memory Imaging Tools
* [OSForensics](http://www.osforensics.com/) - OSForensics can acquire live memory on 32bit and 64bit systems. A dump of an individual processs memory space or physical memory dump can be done
* [Belkasoft Live RAM Capturer](http://forensic.belkasoft.com/en/ram-capturer) - A tiny free forensic tool to reliably extract the entire content of the computers volatile memory even if protected by an active anti-debugging or anti-dumping system