bump

2021-11-07 02:09:10 +01:00 · 2021-11-07 02:09:10 +01:00 · 39ae876150
parent 4e6a13857f
commit 39ae876150
4 changed files with 13 additions and 0 deletions
--- a/.gitmodules
+++ b/.gitmodules
@ -61,3 +61,9 @@
 [submodule "hashes/wordlistctl"]
 	path = hashes/wordlistctl
 	url = https://github.com/BlackArch/wordlistctl.git
+[submodule "forensics/volatility3"]
+	path = forensics/volatility3
+	url = https://github.com/volatilityfoundation/volatility3.git
+[submodule "forensics/volatility"]
+	path = forensics/volatility
+	url = https://github.com/volatilityfoundation/volatility.git
--- a/forensics/volatility
+++ b/forensics/volatility
@ -0,0 +1 @@
+Subproject commit a438e768194a9e05eb4d9ee9338b881c0fa25937
--- a/forensics/volatility3
+++ b/forensics/volatility3
@ -0,0 +1 @@
+Subproject commit 23453f5d8c56030acf1fea72f2b9d0c9dfda85c6
--- a/stego/docs/remnux.md
+++ b/stego/docs/remnux.md
@ -27,6 +27,7 @@ vmonkey <file.doc>
 * Basic Info, find OS profile
 ```sh
 volatility -f <file.iso> imageinfo
+volatility -f <file.iso> kdbgscan
 ```
 * Process list
 ```sh
@ -36,4 +37,8 @@ volatility -f <file.iso> --profile <OSprofile> pslist
 ```sh
 volatility -f <file.iso> --profile <OSprofile> dlllist -p <PID>
 ```
+* Last accessed dir
+```sh
+volatility -f <file.iso> --profile <OSprofile> shellbags
+```
				`@ -0,0 +1 @@`
				`Subproject commit a438e768194a9e05eb4d9ee9338b881c0fa25937`
				`@ -0,0 +1 @@`
				`Subproject commit 23453f5d8c56030acf1fea72f2b9d0c9dfda85c6`