A carregar...
Publicação
Volatility GUI : Simplifying Memory analysis
| Nome: | Descrição: | Tamanho: | Formato: | |
|---|---|---|---|---|
| 5.67 MB | Adobe PDF |
Autores
Orientador(es)
Resumo(s)
Digital forensic analysis is an area generally restricted to a small number of individuals.
This happens due to the complexity of entry to the area due to a small
user base, few and out-of-date software restricting the more advanced software
behind paywalls and licenses. Unfortunately, due to the small user base, open-source
projects take a long time to be updated and fall behind software present in other
areas.
More and more crimes are being committed using digital means, which means
that the ability to analyze the physical computer and its components is becoming
increasingly more important. The Volatility Framework is used for the analysis of
one of these components, the RAM. But the currently available software is far from
perfect due to a lack of graphical interface and other functionalities that have come
to be the norm for software in the year 2021. This means that the end-user needs
to be even more experience to use this software.
This thesis has as its main objective the development of a graphical interface to
the software Volatility. This graphical interface takes as its main objective to ease
the usage of Volatility as much as possible. This is accomplished by introducing
automatic commands, reports, more accessible exports, integrations, functionalities
that had to be done outside of the tool, among many others. This is done to help
the final user that might have very little knowledge and do a complete RAM images
analysis without having to use any external tool.
The results obtained by the development of the software allow the proof of
effectiveness, in levels of time and usefulness, of this tool with new users of this
software and this area, and with more experienced users.
Descrição
Palavras-chave
Cybersecurity Information security Graphical User Interface x Software Computer forensic