It provides a number of advantages over the command line version including:

  • No need of remembering command line parameters.
  • Storage of the operating system profile, KDBG address and process list with the memory dump, in a .CFG file. When a memory image is re-loaded, this saves a lot of time and avoids the frustration of not knowing the correct profile to select.
  • Simpler copy & paste.
  • Simpler printing of paper copies (via right click).
  • Simpler saving of the dumped information to a file on disk.
  • A drop down list of available commands and a short description of what the command does.
  • Time stamping of the commands executed.
  • Auto-loading the first dump file found in the current folder.
  • Support for analysing Mac and Linux memory dumps.

The current version of Volatility Workbench is v2.0:

This article was published on Hack Hex website, under Tools section, written by Dawood Khan on 10th February 2019. Share & leave us some comments on what you think about this topic or if you like to add something.

Tags: #brute force tools #Computer Security #ethical hacking #Forensics #GUI #linux security testing #malware analysis tools #Memory #password brute force #Penetration Testing #penetration testing distribution #penetration testing linux #pentest android #pentest linux #pentest toolkit #pentest tools #security tool kit #spy tool kit #spyware #Volatility #web application testing tools #web malware detection #Workbench