Digital Forensics Solutions is pleased to announce LiME Forensics.
LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures from Android devices. It also minimizes its interaction between user and kernel space processes during acquisition, which allows it to produce memory captures that are more forensically sound than those of other tools designed for Linux memory acquisition.
LiME was first announced at ShmooCon 2012. Slides from that presentation are available here.
LiME source code and documentation is freely available for download from our Google Code page: http://code.google.com/p/lime-forensics/
In an interview with Linux.com, Senior Security Researcher, Joe Sylve (@jtsylve), explains what LiME is and a little about its background.
No comments:
Post a Comment