VolApihooks

Is a volatility script for command apihooks.

Script Data


NameDescription
Script Typejavascript
Tagsmemory, forensics, volatility, server

Inputs


Argument NameDescription
memdumpThe path to memory dump file on the system being used.
systemThe system with Volatility installed to be used for the analysis.
pidThe process ID to pass to Volatility as a parameter of the apihooks command.
profileThe Volatility profile to use.

Outputs


There are no outputs for this script.