23 November 2021 to 27 January 2022
Europe/Amsterdam timezone

IT Forensics for System Admins - Memory Acquisition II

14 Dec 2021, 11:00


Mr Klaus Möller (DFN-CERT)Mr Stefan Kelm (DFN-CERT)


Whatever malware is doing on a computer, the code to carry out its activity has to be in the random access memory (RAM). No wonder that investigating transient memory has become a hot topic in IT forensics over the last decade.

The previous webinar covered the basic, agnostic technique of acquiring memory through the use of kernel drivers and copying tools. However, it required access to the operating system with root or administrator privileges. This webinar covers advanced techniques that will relinquish some of these preconditions and are in some cases be better suited for doing the job of memory acquisition.

Presentation Materials

There are no materials yet.
Your browser is out of date!

Update your browser to view this website correctly. Update my browser now