LoginSignup
0
0

More than 3 years have passed since last update.

@ohisama@github

volatilityの作法 その11

Posted at

概要

volatilityの作法、調べてみた。
plugin作ってみた。

サンプルコード

プロセスを列挙

import volatility.plugins.taskmods as taskmods

class MyPlugin2(taskmods.DllList): 
    """This is my example plugin2"""
    def render_text(self, outfd, data):
        for process in data:
            outfd.write("Process: {0}, Pid: {1}\n".format(process.ImageFileName, process.UniqueProcessId))

以上。

0
0
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
Sign upLogin
0
0