Volatility Workbench is a graphical user interface (GUI) for the Volatility tool. Volatility is a command line memory analysis and forensics tool for extracting artifacts from memory dumps. Volatility Workbench is a free open source tool that provides a graphic user interface for the Volatility memory analysis forensics tool.

It provides a number of advantages over the command line version including:

  • No need of remembering command line parameters.
  • Storage of the operating system profile, KDBG address and process list with the memory dump, in a .CFG file. When a memory image is re-loaded, this saves a lot of time and avoids the frustration of not knowing the correct profile to select.
  • Simpler copy & paste.
  • Simpler printing of paper copies (via right click).
  • Simpler saving of the dumped information to a file on disk.
  • A drop down list of available commands and a short description of what the command does.
  • Time stamping of the commands executed.
  • Auto-loading the first dump file found in the current folder.
  • Support for analysing Mac and Linux memory dumps.

The current version of Volatility Workbench is v2.0:


This article was published on Hack Hex website, under Tools section, written by Dawood Khan. Share & leave us some comments on what you think about this topic or if you like to add something.

Tags: brute force tools, Computer Security, ethical hacking, Forensics, GUI, linux security testing, malware analysis tools, Memory, password brute force, Penetration Testing, penetration testing distribution, penetration testing linux, pentest android, pentest linux, pentest toolkit, pentest tools, security tool kit, spy tool kit, spyware, Volatility, web application testing tools, web malware detection, Workbench,