-
```
What steps will reproduce the problem?
1. Checkout volatility-read-only
2. sudo python setup.py install
3. vol.py -h
What is the expected output? What do you see instead?
Expect to see malware pl…
-
```
If the following command line is executed on a Win7 Enterprise box using ver
2.4 of Volatility:
W:\VOL_Analysis_Scripts>volatility.exe yarascan -f MemoryDump.bin
--yara-rules="(25[0-5]|2[0-4][0…
-
```
If the following command line is executed on a Win7 Enterprise box using ver
2.4 of Volatility:
W:\VOL_Analysis_Scripts>volatility.exe yarascan -f MemoryDump.bin
--yara-rules="(25[0-5]|2[0-4][0…
-
```
What steps will reproduce the problem?
1. Checkout volatility-read-only
2. sudo python setup.py install
3. vol.py -h
What is the expected output? What do you see instead?
Expect to see malware pl…
-
```
What steps will reproduce the problem?
1. Checkout volatility-read-only
2. sudo python setup.py install
3. vol.py -h
What is the expected output? What do you see instead?
Expect to see malware pl…
-
```
What steps will reproduce the problem?
1.installed latest volatility
2.typed 'vol.py malfind -f coreflood.vmem -dump-dir=outdir
--yara-rules=./aa.yara'
3.then i got 'vol.py: error: no such option…
-
```
What steps will reproduce the problem?
1.Load the signatures in the attached .yara file
2.Run yara against suitable test files (see discussion)
3.wait (and wait and wait(
What is the expected out…
-
Hello,
tried to run Loki on a french win10 and got a few suspicious item based on owner. And they are normal (pristine system). accents don't seem to be supported.
usual owners are
SERVICE LOCAL
SER…
juju4 updated
8 years ago
-
```
What steps will reproduce the problem?
1. Checkout volatility-read-only
2. sudo python setup.py install
3. vol.py -h
What is the expected output? What do you see instead?
Expect to see malware pl…
-
```
What steps will reproduce the problem?
1.installed latest volatility
2.typed 'vol.py malfind -f coreflood.vmem -dump-dir=outdir
--yara-rules=./aa.yara'
3.then i got 'vol.py: error: no such option…