bsides_vancouver_2013
These programs are interactive workbooks from my BSIDES Vancouver 2013 talk on Volatility 3.0TP2 and live memory analysis.
They consist of a collection of iPython Notebooks and Volatility 2.3 and Volatility 3.0TP2 for DFIR and live memory analysis
Follow Along
http://nbviewer.ipython.org/urls/raw.github.com/bigsnarfdude/bsides_vancouver_2013/master/01-presentation-ME.ipynb
http://nbviewer.ipython.org/urls/raw.github.com/bigsnarfdude/bsides_vancouver_2013/master/02-parsing_memdumps_ipaddress.ipynb
http://nbviewer.ipython.org/urls/raw.github.com/bigsnarfdude/bsides_vancouver_2013/master/03-presentation-intro.ipynb
http://nbviewer.ipython.org/urls/raw.github.com/bigsnarfdude/bsides_vancouver_2013/master/04-presentation-SBtrojan.ipynb
http://nbviewer.ipython.org/urls/raw.github.com/bigsnarfdude/bsides_vancouver_2013/master/05-TimeSeriesReview.ipynb
http://nbviewer.ipython.org/urls/raw.github.com/bigsnarfdude/bsides_vancouver_2013/master/06-next_Steps.ipynb
.