2024-2025 Undergraduate Catalog 
    
    Jul 04, 2024  
HELP
2024-2025 Undergraduate Catalog

CSCI 4538 - Memory Forensics

Prerequisites: CSCI 3320 CSCI 3338 CSCI 3351 .  This course provides students with the theoretical and practical foundations necessary for the investigation of volatile memory. The discipline of digital forensics will be discussed and outlined with emphasis on the sub-discipline of memory forensics. Students will learn the techniques of acquiring digital evidence from volatile memory and analyzing it. Topics covered include: the volatility framework, Windows memory forensics, Windows objects and pool allocations, processes, handles and tokens, process memory internals, hunting malware in process memory, event logs, registry in memory, networking, Windows services, kernel forensics and rootkits, Windows GUI subsystems, disk artifacts in memory, event reconstruction and timelining. 3 credits.


Catalog Navigation
  Catalog Home
  President’s Message
  The University
  Undergraduate Programs
  University Curricula
  The University Community
  Admission to the University
  Registration
  Academic Policies
  Undergraduate Tuition and Fees
  Financial Aid
  College of Arts and Sciences
  - Nashville Study Away Program 2023
  Pompea College of Business
  Tagliatela College of Engineering
  Henry C. Lee College of Criminal Justice and Forensic Sciences
  School of Health Sciences
  Entrepreneurship and Innovation Program
  University Interdisciplinary Collaborative
  Programs Pending Regulatory Approval
  Course Descriptions
  Board of Governors
  Administration
  Faculty
  Academic Calendar
  Campus Map