No products in the cart.
LOGIN / SIGN UP

Home
Blog
Windows Process Internals: A few Concepts to know before jumping on Memory Forensics [Part 4] — Journey in to the Undocumented VAD Structures (Virtual Address Descriptors) | By Kirtar Oza

Windows Process Internals: A few Concepts to know before jumping on Memory Forensics [Part 4] — Journey in to the Undocumented VAD Structures (Virtual Address Descriptors) | By Kirtar Oza

Windows Process Internals: A few Concepts to know before jumping on Memory Forensics [Part 4] — Journey in to the Undocumented VAD Structures (Virtual Address Descriptors) What is Virtual Address Descriptor (VAD)? For each process, memory manager maintains a set of Virtual Address Descriptors (VADs) that describes the ranges of....

Read the rest of this story with a free account.

Sign up with Google Sign up with Facebook Sign up with email

Already have an account? Sign in

September 10, 2020

Author

dominika.zdrodowska

Latest Articles

BlogSeptember 29, 2020Using the Google custom search engine for OSINT | By Maciej Makowski
BlogSeptember 22, 2020Sysmon 12.0 — EventID 24 | By Olaf Hartong
BlogSeptember 21, 2020Decrypting Databases Using RAM Dump – Health Data | By Michal Rozin
BlogSeptember 18, 2020TikTok — Using OSINT to Discover New Leads | By Josh Richards

Subscribe

0 Comments

Inline Feedbacks

View all comments

https://eforensicsmag.com/wp-content/uploads/2023/06/logo_eForensics_white.svg

© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023