MemProcFS Analyzer - Browse /v0.9 at SourceForge.net

The interactive file manager requires Javascript. Please enable it or use sftp or scp.
You may still browse the files here.

Name	Modified	Size	InfoDownloads / Week
Parent folder
MemProcFS-Analyzer-v0.9.zip	2023-05-25	929.9 kB	0
MemProcFS-Analyzer-v0.9 source code.tar.gz	2023-05-25	4.4 MB	0
MemProcFS-Analyzer-v0.9 source code.zip	2023-05-25	4.6 MB	0
README.md	2023-05-25	602 Bytes	0
Totals: 4 Items		9.9 MB	0

Added: FS_Forensic_Yara (YARA Custom Rules) Added: FS_Forensic_Files (incl. ClamAV) Added: Checking for suspicious processes with double file extensions Added: Checking for Command and Scripting Interpreters Added: Recent Folder Artifacts Added: Hunting Suspicious Image Mounts Added: OpenSaveMRU (OpenSavePidlMRU) Added: LastVisitedMRU (LastVisitedPidlMRU) Added: Terminal Server Client (RDP) Added: Kroll RECmd Batch File v1.21 (2023-03-04) Added: Improved Microsoft Defender AntiVirus Handling Added: Improved Drive Letter (Mount Point) Handling Fixed: Other minor fixes and improvements

Source: README.md, updated 2023-05-25

MemProcFS Analyzer Files

Automated Forensic Analysis of Windows Memory Dumps for DFIR

MemProcFS Analyzer Files

Automated Forensic Analysis of Windows Memory Dumps for DFIR

Get an email when there's a new version of MemProcFS Analyzer