you are a role model in cyber security sir.

You made memory forensics so easy to understand for a newbie like me. I’m now more interested in practicing forensics. Hats off to to you sir Monnappa!

One of the best presentations that I ever attended. I feel I learned at each and every second of the presentation. Very engaging talk. The experience and the expertise of Monnappa on Volatility framework is incredible. Great work. :)

Best memory forensics presentation ever! Thank you sir!

wow, extraordinary presentation, can I request to get the discussed memory dumps for practicing? please

Amazing presentation with TONS of invaluable information, all in a very concise manner. TY!

This absolutely blew my mind. So detailed and well explained. Thank you Monnappa!

Danke für die Präsentation. Habe super viel gelernt was ich nun auf der Arbeit umsetzten kann ❤️

Thank you very much Monnappa for this excellent presentation and perfect demonstration.

By far, one of the best videos in terms of understanding the processes used and the different commands with Volatility. Will be watching again so I can practise on my own examples with Volatility3.

Very detailed presentation. Thank you for sharing

Awesome and great explanation.

Best learning session, thank you

What a voice sir, it is so clear and your approach to each objective is definitely whelming. Thank you for such a great demonstration, felt like learnt and dealt with my investigation. Tahnk you once again.

Wow 👏 thank you so much for this session 🙌

This is an awesome informative presentation. Thank you 😊

Really very nice explanation..I am getting 60 %clarity on memory analysis

An Awesome tool for Memory Forensics and a very detailed presentation!! Glad this is an open-source tool.

Nice presentation.

I love to follow ur videos your videos teaches me a lot. Thank you so much.

very nice.. thank you for delivering great talk.

Good work Sir.

Thanks KZread for recommending this video

Good one

You are the best... 👍

Man thanks, I had to do incident response for my threat hunt class. I was so lost but this cleared up a bunch.

Very Nice...

So beautiful!!!!

Brilliant, nothing to say more

Please provide full video.. It's very useful

awesome !!!!nice training

Awesome book bro 💪👊👌 read it 😍🥰

i tried to recover a packed malware from memory knowing its PID using procdump but it recovered me packed exe . Can't i recover it unpacked ?

volatility rulez. This is all one may need for malware analysis.

i really liked this presentation; very informative and, indeed, practical. I'm sure I'm not alone in my disappointment for what defcon and black hat have become. What's more; the infosec industry in the east seems much less superficial and sexy, which is why the best presentations come from people who live outside the US, Canada, Western Europe. Feels like that, anyway.

I’m now more interested in practicing forensics, can you share the memory dump

Hi sir, I'm doing a project on "Primary Memory Analysis". I have a question how can I undergo the live memory forensic, in which computer system I need to undergo, can I do on my personal laptop and what are the programs I need to run or do I need to download memory dump from the Internet containing malware? Could you plz advice.

Is it possible to get the sample you are analyzing ?

how to do memory forensics in Routers

can u provide the file link

How to do analysis on infected Android mobile

The dizzying array of tools and techniques... it's mindboggling. Don't we all agree that the root cause of all these issues is... Windows? Ditch that shit OS.

i want one sample .vmem file

@AlexSiviero

3 жыл бұрын

Vmem is a memory dump from a VMware machine. Easiest and cleanest way to obtain it is to snapshot an infected VM and look for this file on the folder the VM is at. You can then run volatility on it without the need to converting it to a raw dump

Gulp!

nice very informative! could be alot better tho!

wkwkwk server C2 nya di undip