Dumping Plain text Chat From Memory - Forensic

We've already posted a way to capture ram using Dumpit now in this particular blog post we're going to show you how you can dump clear text chat messages from the memory so let's do it.

Capturing Data

Before Caputring Data We'll quickly use our browser to send some messages so let's do it and im using google hangout messenger.

Hangout messages

Live Physical Memory Analysis - Ram Analysis

Welcome friends, we all know the importance of physical memory i.e RAM and also the importance of it as once the computer is shutdown next time we won't be able to find out which process currently were running on the system before the shut down so we need a quick way to scan the ram i.e physical memory using useful memory analysis tools.

RAM Analysis

I fired up my windows xp machine and gave it 256MB of ram so we can easily analyse it. then i used the DumpIt.exe tool to dump the data out of ram physical memory.

DumpIt.exe