Windows » Security & Privacy » Anti-Spam & Anti-Spy Tools » Belkasoft RAM Capturer 1.0
Belkasoft RAM Capturer 1.0
56K: 10s 64K: 9s 128K: 4s 768K: 1s
Total: 249 | Last week: 0
WinXP, WinNT 4.x, Win2003, Win2000, Win Vista
Belkasoft RAM Capturer Publisher's description:
Belkasoft RAM Capturer is a kernel-mode tool designed to capture the content of the computer's volatile memory in a forensically sound way.
Certain applications, including multi-player computer games, communication tools, and malware implement anti-debugging measures to actively block third-party tools from accessing their memory sets. In mild, best-case scenarios these proactive measures will simply cause the memory dumping tool to read zeroes (or random data) instead of the actual information. In other cases (e.g. malware, Trojans, certain security applications), such systems may lock up or reset the PC, thus destroying the content of the volatile memory and making it absolutely impossible to dump RAM contents. Examples of such anti-debugging systems include nProtect GameGuard and the game of Karos.
Many forensic RAM acquisition tools will operate in the least privileged user mode, triggering these protection systems and serving no good to their users. Unlike many competing tools running in system's user mode, Belkasoft RAM Capturer comes equipped with 32-bit and 64-bit kernel drivers allowing the tool to operate in the most privileged kernel mode.
Belkasoft RAM Capturer leaves the smallest footprint possible, does not require installation and can be launched in seconds from a USB flash drive. Memory dumps acquired with Belkasoft RAM Capturer can be then analyzed with Belkasoft Evidence Center Live RAM Analysis.
System Requirements:32-bit or 64-bit Windows
Program Release Status: New Release
Program Install Support: No Install Support
Belkasoft RAM Capturer Version History:Belkasoft RAM Capturer 1.0 added on: 20-02-2013 - actual version
Belkasoft RAM Capturer Related software downloads:
Belkasoft RAM Capturer Related Tags:memory image ram image memory dump capture volatile memory capture ram capture memory content acquire ram ram acquisition create memory dump make memory dump dump memory belkasoft capturer tool content memory -bit most many tools user mode privileged kernel
News about new products, updates, and special offers via e-mail.