June 2011 Archives

Evtx Parser Version 1.0.8

By Andreas Schuster on June 9, 2011 4:00 PM

I'm releasing version 1.0.8 of my Windows Event Log Parser library and tools collection. While there are only minor enhancements to the library, the distribution format has been changed significantly. I apologize for any inconvenience this may cause. The archive is available for download here.

Continue reading Evtx Parser Version 1.0.8.

Mac OS X memory analysis with Volafox

By Andreas Schuster on June 7, 2011 4:00 PM

Kyeong-Sik Lee and the Korean Digital Forensic Research Center have released Volafox, a free and open-source tool to analyze Mac OS X memory images. Volafox is based on work by Matthieu Suiche (paper and slides) and the Volatility memory analysis framework.

Continue reading Mac OS X memory analysis with Volafox.
« February 2011 | Main Index | Archives | October 2011 »

Search

Deutsch

Deutschsprachige Ausgabe

Recent Entries

Tag Cloud

Categories

Archives

Imprint

This blog is a project of:
Andreas Schuster
Im Äuelchen 45
D-53177 Bonn
impressum@forensikblog.de

Copyright © 2005-2012 by
Andreas Schuster
All rights reserved.
Powered by Movable Type 5.12