An advanced memory forensics framework. Contribute to volatilityfoundation/volatility development by creating an account on GitHub.
https://github.com/volatilityfoundation/volatility/wiki/Command-Reference#dumpfiles 参考资料: volatility memory forensics cheat sheet.pdf 应用程序进程 wordpad.exe写字板 MineSweeper.exe扫雷 sshd.exe OtterCTF取证 https://www.freebuf.com/news/145262.html https://www.freebuf.com/column/152545.html稳。