ATC-NY Releases Computer Forensics Tool, Mem Marshal
Nem Marshal by ATC-NY is a user-friendly and automated memory analysis system which helps forensic investigators analyze captured volatile memory (RAM) images.
It displays running processes, open files, active network connections, open registry keys, process DLLs, and process SIDs. Also, it will automatically find and identify hidden processes and network connections, as well as display and search the Windows registry. Mem Marshal maintains a detailed log file of all activities it perform. It produces reports in RTF, PDF, and HTML formats.
The software must be run on Microsoft Windows XP or newer with at least 150MB of free hard disk space.
Source: Mem Marshal