News

LiMEaide: Remotely Dump Linux RAM

LiMEaide is a python application intended to remotely dump RAM of a Linux users and make an instability profile for later examination on your neighborhood have. We hope that this will rearrange Linux computerized crime scene investigation in a remote situation. Keeping in mind the end goal to utilize LiMEaide you should simply nourish a remote Linux customer IP address, sit back, and expend your most loved charged refreshment.



How does it work?

  • Make a remote connection with specified client over SHH
  • Transfer necessary build files to the remote machine
  • Build the memory scrapping Loadable Kernel Module (LKM) LiME
  • LKM will dump RAM
  • Transfer RAM dump and RAM maps back to host
  • Build a Volatility profile


Dependencies

  • python3
  • paramiko
  • dwarfdump
  • LiME

LiME


In order to use LiME you must download and move the source into the LiMEaide/tools directory. Make sure the the LiME folder is named LiME. The full path should be as follows:

LiMEaide/tools/LiME/

How to:

  • Download LiME v1.7.8
  • Extract into LiMEaide/tools/
  • Rename folder to LiME
LiMEaide: Remotely Dump Linux RAM Reviewed by Ali Dharani on 11:41 PM Rating: 5

No comments:

Feel free to ask questions, we love to respond.

All Rights Reserved by The World of IT & Cyber Security: ehacking.net © 2014 - 2015
Powered By Blogger, Designed by Sweetheme

Contact Form

Name

Email *

Message *

Powered by Blogger.