Skip navigation.
Home

Memoryze Memory Forensics Tool

Peter Silberman from Mandiant has written an article at OpenRCE about the new tool Memoryze.

Introduction:

The goal of this article is to demonstrate how simple malware analysis can be using Memoryze and some good old fashion common sense. Readers should have some knowledge of how malware works, and be somewhat familiar with Memoryze. A good place to familiarize yourself with Memoryze is the user guide included in the installer.

Memoryze is designed to aid in memory analysis in incident response scenarios. However, it has many useful features that can be utilized when doing malware analysis. Memoryze is special in that it does not rely on API calls. Instead Memoryze parses the operating systems' internal structures to determine for itself what the operating system and its running processes and drivers are doing.

Lack of activity

Wow, almost a month with the same topic in main page!

We always welcome content if

We always welcome content if you wish to contribute.