Memory Acquisition on Windows with DumpIt

Memory forensics is becoming an essential aspect of digital forensics and incident response. When a system is believed to have been compromised or infected, the investigator needs a convenient way to take a memory snapshot of the host. DumpIt, a new tool from MoonSols, makes this very easy, even if the person in front of the affected computer isn't technical. For an overview of this approach, see blog.zeltser.com/post/7952715630/memory-acquisitio…