Osvac(Open Source Volatilty Addendum by C-DAC) is a GUI based memory analysis tool that can extracts digital artifacts from a memory dump. Osvac can extract digital artifacts from volatile memory samples captured from Windows XP Service Pack 2 and Service Pack 3.
Features
· Image date and time
· Operating system information
· Running/hidden/dead processes
· Open network sockets
· Open network connections
|
· DLLs loaded for each process
· Open files for each process
· Open registry handles for each process
· Provides flexible reporting
|
|
|
|
Click to Download !
|
|
11,465 KB
|
| |
OSVAC 1.0