🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

.volatility #PluginContest #Contender Shusei Tomonaga: ETW Scan is an investigative tool to aid security researchers, reverse engineers & incident responders in leveraging Windows Event Tracing for Windows (ETW) data for enhanced threat hunting & analysis. #DFIR #memoryforensics

.volatility #PluginContest #Contender Thomas Clarke: Image Extraction, NSRL Filtering & Image Classifiers plugins help investigators extract memory-resident images & sort those images using numerous classifiers. #DFIR #memoryforensics

.volatility #PluginContest #Contender Kartik N. Iyer + Parag H. Rughani: Thread Local Storage (TLS) Callback is a feature-rich plugin designed to detect, analyze & disassemble TLS callbacks in memory samples. #DFIR #memoryforensics

.volatility #PluginContest #Contender Valentin Obst: btf2json focuses on large-scale Linux memory analysis, incorporating information in the vmlinuz file to create #Volatility3 symbol tables without the need for a full debug kernel. #DFIR #memoryforensics

.volatility #PluginContest #Contender Sylvain Peyrefitte: ScringsScan + VadScringsScan provide syntax-aware scanning for 6 languages in kernel memory in Linux, macOS & Windows + in-process VADs in Windows, improving in-memory script payloads searching. #DFIR #memoryforensics

We will announce the volatility #PluginContest winners tomorrow, Friday, March 28, so stay tuned! #DFIR #memoryforensics #Volatility3

We had some awesome submissions to the volatility #PluginContest. The first place submission is a HUGE contribution to #memoryforensics on the Linux side, and solves a hard problem that others have grappled with for some time! #DFIR

Thank you! volatility

We are very excited to announce that Volatility 3 has reached parity with Volatility 2! With this achievement, Volatility 2 is now deprecated. See the full details in our blog post: volatilityfoundation.org/announcing-the…

We are VERY excited to announce that Volatility 3 has now reached feature parity with Volatility 2! With this parity release, Volatility 2 is now deprecated. Full details in the blog post linked below.

Congratulations to all of the Volatility contributors - this was no small feat! We are proud to be a sustaining sponsor of this important open-source project that remains the world’s most widely used memory forensics platform. #dfir

I will be showing off @Volatility 3 during my talk on Wednesday afternoon at RVAsec. Be sure to attend and come say hello if you will be around!

The Call for Presentations for From the Source 2025 is open! Our Makers Track is aimed at developers of open source DFIR tools and the Hunters track covers the best Threat Intel research of the past year. See the full details in our blog post: volatilityfoundation.org/announcing-fts…

The Call for Presentations for From the Source 2025 is open! Our Makers Track is aimed at developers of open source DFIR tools and the Hunters track covers the best Threat Intel research of the past year. See the full details in our blog post: volatilityfoundation.org/announcing-fts…

Our highly popular and technical training, "Malware and Memory Forensics with Volatility", has been fully converted to volatility 3 and significantly updated, including many new sections and 8 new, in-depth labs. Available online and in VA in October. memoryanalysis.net/courses-malwar…