Chapter 1
Malware Incident Response
Volatile Data Collection and Examination on a Live Windows System
Solutions in this chapter:
• Volatile Data Collection Methodology
Local vs. Remote Collection
Preservation of Volatile Data
Physical Memory Acquisition
Collecting Subject System Details
Identifying Logged-in Users
Current and Recent Network Connections ...
Get Malware Forensics Field Guide for Windows Systems now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.