Acquire and Analyze Random Access Memory
DFIR Science has launched a new course on learn.dfir.science on how to Collect and Analyze Random Access Memory.
Recent posts
What is Random Access Memory?
Random Access Memory forensics starts with acquiring RAM from a live (turned on) system. There are several ways to collect the contents of RAM from a compute...
DFIR Science nominated for Forensic 4:cast Award
The DFIR Science YouTube channel was nominated for the 2022 Forensic 4:cast Awards under “DFIR Show of the Year”!
🇺🇳 Africa DFIR CTF 2022 Award Ceremony 🎉
Huge DFIR stream with a lot of Q&A. Check out the chapter times below!
Fast password cracking - Hashcat wordlists from RAM
Password cracking often takes a long time. Brute force is normally your last option. But before that, a wordlist usually helps guess the password faster.
