Belkasoft RAM Capturer 1.0
Capture the content of the computer's volatile memory in a forensically sound way. This free kernel-mode tool comes with 32-bit and 64-bit drivers to overcome active anti-debugging and anti-dumping protection systems.
Product Specifications
| User Rating: | item has less then 1 vote |
|
| FileCart Rating | Not yet Rated | |
| Submitted by: | belkasoftcom | |
| Homepage | Visit Homepage | |
| License | Freeware | |
| Price | $0.00 | |
| Downloads | 437 | |
| OS Support | Windows No Install Support | |
| File Name | RamCapturer.zip | |
| File Size | 0.07 MB ( 69 KB ) | |
| Published | Apr 10, 2013 (11 years ago) | |
| Updated | Dec 19, 2013 (10 years ago) | |
Follow Us!
Latest Searches
Net Monitor for Employees Professional 5 hours ago
GCulvert 6 hours ago
wise registry cleaner portable 11 hours ago
2024 12 hours ago
2025 1 day ago
universal soccer 1 day ago
Quick Receipt Software 1 day ago
autocad portable 2 days ago
site:portableapps.com 2 days ago
Popular Searches
Database Workbench Pro 258 times
TeraByte Drive Image Backup and Restore 255 times
Elcomsoft Phone Breaker 251 times
Elcomsoft Phone Viewer 232 times
Softperfect 230 times
SAM Broadcaster Cloud 223 times
BootIt Collection 223 times
YetiShare File Hosting Script 207 times
Antamedia HotSpot Software 205 times
Product Details
Certain applications, including multi-player computer games, communication tools, and malware implement anti-debugging measures to actively block third-party tools from accessing their memory sets. In mild, best-case scenarios these proactive measures will simply cause the memory dumping tool to read zeroes (or random data) instead of the actual information. In other cases (e.g. malware, Trojans, certain security applications), such systems may lock up or reset the PC, thus destroying the content of the volatile memory and making it absolutely impossible to dump RAM contents. Examples of such anti-debugging systems include nProtect GameGuard and the game of Karos.
Many forensic RAM acquisition tools will operate in the least privileged user mode, triggering these protection systems and serving no good to their users. Unlike many competing tools running in system's user mode, Belkasoft RAM Capturer comes equipped with 32-bit and 64-bit kernel drivers allowing the tool to operate in the most privileged kernel mode.
Belkasoft RAM Capturer leaves the smallest footprint possible, does not require installation and can be launched in seconds from a USB flash drive. Memory dumps acquired with Belkasoft RAM Capturer can be then analyzed with Belkasoft Evidence Center Live RAM Analysis.
| Requirements: | 32-bit or 64-bit Windows |
| Release Info: | New Release on Feb 20, 2013 |
| Release Notes: | New release features 32-bit and 64-bit kernel-mode drivers to overcome active anti-debugging and anti-dumping protection. |
| Related Tags: | memory image ram image memory dump capture volatile memory capture ram |
Reviews
Reviews of Belkasoft RAM Capturer 1.0
You can be the first to write a review of Belkasoft RAM Capturer!Other products submitted by this publisher
Extract many types of digital evidence from suspects' hard drives. Data Carving and Live RAM analysis enable the extraction of destroyed and difficult to recover evidence. More than 250 types of artifacts are extracted.
Belkasoft Evidence Center EnterpriseExtract and analyze digital evidence with collaboration support. The Enterprise edition of Belkasoft Evidence Center enables team work with full collaboration support, adding user and permission management to the already impressive list of features.
Belkasoft Facebook Profile SaverFree tool to save the content of Facebook users' profiles for offline use. Designed for computer forensic and IT security specialists, the tool automates the routine of downloading Facebook pages and resources for offline examination and printout.
Forensic IM AnalyzerExtract and analyze log files, communication histories and contact databases of a wide range of more than 80 instant messenger applications. Analyze Skype, AOL, ICQ, MSN Messenger, Yahoo! Messenger, Miranda, MySpace IM, QIP, Trillian, AIM, QQ etc.
Forensic Studio UltimateExtract more digital evidence from suspects' hard drives than ever. With more than 250 types of artifacts, the tool extracts browser histories, chats, IM and social communications, documents etc. Data Carving, Live RAM, image and video file analysis.