This seems like a pretty interesting tool for someone who is interested in computer forensics or find what is left on RAM even after shutting down the computer.
Myth: RAM is volatile. So it erases all data after you switch off computer power.
According to McGrew in PC is RAM memory will stay upto 5 and 10 seconds without power. In laptops it will stay up to 10 minutes. During that period if you boot up your machine using msramdmp you will be able to find lot of interesting stuff.
Hmm still it’s too late for me to tell something about this software. Still I need to try this and see how it works.
If you interested in downloading msramdmp visit www.mcgrewsecurity.com you can find couple of more forensics and other tools.
Tuesday, September 23, 2008
