Description: In one of (hopefully) many videos I will be creating highlighting the capabilities of Volatility, a free memory analysis tool.
This video shows grabbing the windows NTLM passwords from a memory dump and then using John the Ripper to crack them.
In other videos I hope to show using a memory dump to detect rootkits and badness on a system.
I have a security blog at: http://sketchymoose.blogspot.com
Tags: volatility , john the ripper , memory analysis ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Nice vid, :)
See this guy use Windows Password Key to crack lost windows password in minutes
http://www.youtube.com/watch?v=VRpw9ygSEys
Never heard of Volatility; looks to be very cool. Thanks for the vid.
nice vid! volatility looks quiet funny... and the best thing... HAHA IT'S PYTHOOON ...have to walk through the source code right now :D