Advanced Memory Forensics Tool

Created custom Volatility 3 plugins to detect modern DKOM (Direct Kernel Object Manipulation) techniques used by sophisticated rootkits in Windows memory dumps.

Project Overview

This project explores advanced concepts in investigation.

Key Achievements

• Implemented core functionality using Volatility 3.
• Demonstrated expertise in Memory Forensics.
• Documented findings in a detailed technical report.