Master memory forensics techniques including memory acquisition, process analysis, and artifact extraction using Volatility and related tools. Use when analyzing memory dumps, investigating incidents, or performing malware analysis from RAM captures.
8.1
Rating
0
Installs
Security
Category
Excellent memory forensics skill with comprehensive coverage of acquisition, analysis workflows, and Volatility 3 usage. The description clearly articulates when to invoke the skill (memory dumps, incident investigation, malware analysis). Task knowledge is exceptional with detailed commands, plugins, detection patterns, YARA integration, and best practices. Structure is well-organized with logical sections, though slightly dense for a single SKILL.md. Novelty is solid as memory forensics requires specialized knowledge of data structures, injection techniques, and tool-specific syntax that would consume significant tokens for a CLI agent to replicate. Minor improvement possible by modularizing very detailed sections (e.g., data structures, YARA rules) into separate referenced files for cleaner navigation.
wshobson
Skill Author
Loading SKILL.md…
