[Request] Rekall Memory Forensic Framework support

sleuthkit / autopsy

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera's memory card.

http://www.sleuthkit.org/autopsy/

2.41k stars 597 forks source link

[Request] Rekall Memory Forensic Framework support #5898

Closed Baricanac closed 3 years ago

Baricanac commented 4 years ago

In addition to the already existing support by Autopsy for usage with the Volatility Framework, it wouldn't hurt to try by expanding support for the Rekall Memory Forensic Framework .

Public Profile Repository for Rekall Memory Forensic

Baricanac commented 3 years ago

The Rekall Memory Forensic Framework development has ceased, so I doubt supporting and incorporating it into Autopsy is a good idea nowadays.