-
```
I'm just creating an issue so we don't forgot to fix these plugins for XP/2k3
x64. We need to find the symbol offsets and create new structs most likely.
```
Original issue reported on code.goo…
-
```
I'm just creating an issue so we don't forgot to fix these plugins for XP/2k3
x64. We need to find the symbol offsets and create new structs most likely.
```
Original issue reported on code.goo…
-
```
What steps will reproduce the problem?
C:\Users\dmk\volatility>python vol.py -f ..\win7sp1x64.dmp --profile=Win7SP1x64
connscan
Volatile Systems Volatility Framework 2.1_alpha
Offset(P) Local A…
-
```
I'm just creating an issue so we don't forgot to fix these plugins for XP/2k3
x64. We need to find the symbol offsets and create new structs most likely.
```
Original issue reported on code.goo…
-
```
What steps will reproduce the problem?
1. Used Dumpit to acquire memory image
2.
3. Not sure if im doing anything wrong when examaning this big of an image
What is the expected output? What do …
-
```
There are some plugins (sockets/sockscan) that still show up in the --help
plugins list when a Windows 7 profile is specified. That's because we don't
define Plugin.is_valid_profile for them yet…
-
```
What steps will reproduce the problem?
1. Running netscan plugin on Vista SP2 dump
2.
3.
What is the expected output? What do you see instead?
PID, Process name is not found TCPEndPoint scan outp…
-
```
Enhancement submission; would love to see the capability to dump contents of
the DNS resolver cache if possible. Something akin to "ipconfig /displaydns".
Would also be interesting to see repres…
-
```
What steps will reproduce the problem?
1. Using the latest volatility with Gentoo 3.12 64bit
2. Used LIME to dump memory image (insmod lime.ko "path=/root/limetest.mem
format=lime"
3. Created Pro…
-
```
I see this is on the Todo list for 2.1. Here's a patch...comments welcome.
Volatile Systems Volatility Framework 2.1_alpha
Offset #Ptr #Hnd CreateTime From To
0x…