all InfoSec news
File Handles in Volatility
Nov. 5, 2022, 9:27 p.m. | /u/Forensics808
Computer Forensics www.reddit.com
I'm carrying out a RAM dump to find a generated key stored in a "sSecretKey" variable which is pinned to a memory handle 0x010f13e9 (both variable and handle in screenshot). Can I access this memory handle directly using Volatility, using "handles" or using any other approach?
​
I would also be interest in any solution using yarascan to find this variable value
Note: Visual Studio encoding does not appear to …
More from www.reddit.com / Computer Forensics
Doing a DFIR Job survey for 2024
1 day, 1 hour ago |
www.reddit.com
Replace our existing Forensics Software
2 days, 23 hours ago |
www.reddit.com
Certifications/Course
3 days, 7 hours ago |
www.reddit.com
From IcedID to Dagon Locker Ransomware in 29 Days
3 days, 8 hours ago |
www.reddit.com
Existing IT experience - how to move into Forensics?
1 week, 1 day ago |
www.reddit.com
Is public computer forensics dying?
1 week, 2 days ago |
www.reddit.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
DevSecOps Engineer
@ LinQuest | Beavercreek, Ohio, United States
Senior Developer, Vulnerability Collections (Contractor)
@ SecurityScorecard | Remote (Turkey or Latin America)
Cyber Security Intern 03416 NWSOL
@ North Wind Group | RICHLAND, WA
Senior Cybersecurity Process Engineer
@ Peraton | Fort Meade, MD, United States
Sr. Manager, Cybersecurity and Info Security
@ AESC | Smyrna, TN 37167, Smyrna, TN, US | Santa Clara, CA 95054, Santa Clara, CA, US | Florence, SC 29501, Florence, SC, US | Bowling Green, KY 42101, Bowling Green, KY, US