Memory Analysis Summary
Harlan Carvey has posted a great summary article on Windows memory analysis. In fact it is a free sample chapter from his new book on Windows Forensic Analysis.
On 38 pages the article discusses the pros and cons of the most important methods to dump memory on the Windows NT and Vista platforms. This is followed by an introduction into analysis techniques.
Based on the sample PDF, the layout is clear and easy to skim through. At the end of the chapter a "Solutions Fast Track" summarizes the most important facts. A "Frequently Asked Questions" section will help you to quiz yourself about what you've just read or to apply the methods to real-world situations.
