Volatility plugin parser
Bare Monkey was developed to help expedite my forensics analysis using Volatility. With the creation of Bare Monkey, one can run all possible plug-ins against a memory capture using Volatility and anything not returning anything, will be deleted. After the program runs, the data can be parsed quickly and without Volatility.
#Execution This script needs Volatility in order to run successfully.
- Call upon the script as depicted below:
./bare_monkey.sh
-
Occasionally, you need to modify the permissions: chmod 711 ./bare_monkey.sh
-
Finally, follow the prompts at the beginning of the script!
This script is intended to be used for memory anaylsis using Volatility.
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.