Get full access to Kali Linux - An Ethical Hacker's Cookbook - Second Edition and 60K+ other titles, with a free 10-day trial of O'Reilly.

There are also live events, courses curated by job role, and more.

Start your free trial

How to do it...

Let's perform the following steps:

Volatility is already installed in Kali. Let's run the framework to see the details of the image we have. Run the following command:

volatility -f ch2.dmp imageinfo

Once we run the preceding command, we get the following output:

The preceding screenshot shows us the information pertaining to the image, such as the Image Date and Number of Processors. It also suggests the profile to use for further analysis. Use Win7SP1x86 for now. Let's try to find the hostname of the system whose image we are analyzing. For this, look at the SYSTEM hive in the registry. This hive contains the hostname ...

Get Kali Linux - An Ethical Hacker's Cookbook - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Don’t leave empty-handed

Get Mark Richards’s Software Architecture Patterns ebook to better understand how to design components—and how they should interact.

It’s yours, free.

Get it now

Check it out now on O’Reilly

Dive in for free with a 10-day trial of the O’Reilly learning platform—then explore all the other resources our members count on to build skills and solve problems every day.

Start your free trial Become a member now