Volatility Traces is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: Volatility 3 (v2.7.0+ REQUIRED), Execution, Persistence.
Learning Objectives
Analyze a memory dump using Volatility to identify malicious processes, persistence mechanisms, defense evasion techniques, and map them to MITRE ATT&CK.
Categories: Endpoint Forensics.
MITRE ATT&CK Tactics: Execution, Persistence.
Tools: Volatility 3 (v2.7.0+ REQUIRED).
Difficulty: easy.
This website uses cookies to ensure you get the best experience on our
website.
Learn more