• Welcome to Overclockers Forums! Join us to reply in threads, receive reduced ads, and to customize your site experience!

How to read virtual memory

Overclockers is supported by our readers. When you click a link to make a purchase, we may earn a commission. Learn More.
N

NameSniper

Registered
Joined
Mar 20, 2005
Hi,

Can anyone please let me know how the one may read files from virtual memory(pagefile.sys)? Is there a software to read all files from this file in human readable form?
 
Hi NameSniper,

Interesting question, don't think I've considered that before. Did a quick search online, and found a forum post that might get you started:

Memoryze can make use of the paging file(s) if you run it on a live system.

Jesse's "Using Every Part of the Buffalo in Windows Memory Analysis" paper is a great place to start as well.

Memoryze: http://www.mandiant.com/software/memoryze.htm
Audit Viewer: http://blog.mandiant.com/archives/50
Jesse's paper: http://jessekornblum.com/research/papers/buffalo.pdf
Click to expand...
 
Jmtyra said:
Hi NameSniper,

Interesting question, don't think I've considered that before. Did a quick search online, and found a forum post that might get you started:
Click to expand...
Nice find, thanks.

The only issue is that the pdf file seem to have been deleted.
 
You must log in or register to reply here.

Similar threads

D
Trident Z5 DDR5 7200mhz 2x16gb with Ryzen 7600x - timings and benchmark
2
Replies
29
Views
4K
Woomack
W
TickleMyElmo
How do I create a non-administrator account in Win. 11?
Replies
2
Views
529
TickleMyElmo
TickleMyElmo
Time-Bandit
Smart TV unable to read USB
Replies
7
Views
456
Time-Bandit
Time-Bandit
V
Lenovo Yoga 7i 2-in-1 14" - good price or pass?
Replies
2
Views
979
Viper69
V
dfonda
Looking forward to playing Starfield again.(Can't)
Replies
10
Views
552
dfonda
dfonda
Back