Windows Memory Reader
March 18, 2013
ATC-NY's new computer forensic tool, Windows Memory Reader, is a simple command-line utility to capture the contents of physical RAM on a suspect computer, letting an investigator gather volatile state information prior to shutting the machine down. Results are stored in a Windows crash dump or raw binary file for later off-line analysis by the investigator. Researchers can also use Windows Memory Reader to capture memory-mapped device data, such as shared video memory.
Request more info about this product / service / company
For more information, click here
Other Recent Products
Mark43's Cobalt software platform unites a set of law enforcement tools securely in the...
At less than 1.5 pounds, Fido X2 is an ultra-lightweight, handheld explosives trace...
For more than 30 years, Spillman Technologies has provided public safety professionals...