rekall (security/rekall) Add to my watchlist

collection of tools for the extraction of digital artifacts from volatile memory (RAM) samples

The Rekall Framework is a completely open collection of tools, implemented in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory (RAM) samples. The extraction techniques are performed completely independent of the system being investigated but offer visibilty into the runtime state of the system. The framework is intended to introduce people to the techniques and complexities associated with extracting digital artifacts from volatile memory samples and provide a platform for further work into this exciting area of research.

Version: 1.7.1 License: GPL-2 GitHub
Maintainers No Maintainer
Categories security
Homepage http://www.rekall-forensic.com/
Platforms {darwin any}
Variants -

"rekall" depends on

lib (1)
build (5)

Ports that depend on "rekall"

No ports


Port Health:

Loading Port Health

Installations (30 days)

1

Requested Installations (30 days)

1