Memory analysis sof...
 
Notifications
Clear all

Memory analysis software - Recommendation

Martii_xx
(@martii_xx)
New Member

Hi everyone,

Could somebody recommend me a software for performing memory analysis? It does not have to be free.

I'm currently trying to perform RAM memory analysis. I made an memory image using DumpIt of my laptop with current Windows version (20H2) and tried to analyse the data using volatility (2 and 3). As far as I see, volatility framework does not support newer Windows version than 19042 (there is not any Windows profile for this version). This software does not support the newest MAC OS version.

I also tried to use Redline but it does support only Windows but I am looking for something other. When I try to google it, I find some software but most of them are old.

Quote
Topic starter Posted : 17/10/2021 8:14 pm
cmueller-tp
(@cmueller-tp)
New Member

Hi Martii!

you can check out Trufflepig Nexus which is a new product in the area of memory forensics.
It's still early stage but it does support Windows 20H2 (and today's release also added experimental Windows 11 support). We're always trying to be up to date with new Windows releases.

We provide a free demo version (up to 5 GiB memory images) and development is really active so check it out and let me know what you think!

 

Cheers
Chris

ReplyQuote
Posted : 18/10/2021 11:22 am
UnallocatedClusters
(@unallocatedclusters)
Senior Member

OSForensics by Passmark

ReplyQuote
Posted : 19/10/2021 3:52 pm
Share: