It introduces 2 tools, Memoryze and Audit Viewer. Both are available free at Mandiant. The article shows:
- How to install Memoryze on USB as incident response kit.
- Work through the steps to acquire a memory image.
- Outline the potential issue/solution with memory acquisition.
- Performing live memory analysis.