SlackBuilds Repository

15.0 > System > volatility3 (2.4.1) 

Volatility Framework - Volatile memory extraction utility framework.

Volatility is the world's most widely used framework for extracting 
digit artifacts from volatile memory (RAM) samples. The extraction 
techniques are performed completely independent of the system being 
investigated but offer visibility into the runtime state of the system.
The framework is intended to introduce people to the techniques and 
complexities associated with extracting digital artifacts from volatile
memory samples and provide a platform for further work into this 
exciting area of research.

In 2019, the Volatility Foundation released a complete rewrite of the
framework, Volatility3. 

The following are optional dependancies:
  - capstone
  - jsonschema

This requires: pycryptodomex, python3-pycrypto, python3-yara, pefile

Maintained by: Barry J. Grundy
Keywords: memory,forensics,ram
ChangeLog: volatility3

Homepage:
https://github.com/volatilityfoundation/volatility3

Source Downloads:
volatility3-2.4.1.tar.gz (5172c1eb8063a2d774359ebb7ebc2a49)

Download SlackBuild:
volatility3.tar.gz
volatility3.tar.gz.asc (FAQ)

(the SlackBuild does not include the source)

Individual Files:
README
slack-desc
volatility3.SlackBuild
volatility3.info

Validated for Slackware 15.0

See our HOWTO for instructions on how to use the contents of this repository.

Access to the repository is available via:
ftp git cgit http rsync

© 2006-2024 SlackBuilds.org Project. All rights reserved.
Slackware® is a registered trademark of Patrick Volkerding
Linux® is a registered trademark of Linus Torvalds