Volexity Volcano is a comprehensive, cross-platform memory analysis solution designed to address the challenges of modern digital investigations. It facilitates rapid response and collaboration among incident response teams, even in dynamic, large-scale environments. Volcano helps overcome issues related to mixed skill sets, disparate institutional knowledge, and limited access to evidence. It provides responders with the functionality needed to conduct thorough, time-sensitive, enterprise-scale investigations. Driven by visualizations, workflows, and playbooks, Volcano extracts, indexes, and correlates artifacts to provide unprecedented visibility into systems’ runtime state and trustworthiness. The software expedites analysis and operationalizes institutional knowledge by guiding investigators to relevant evidence with threat feeds, whitelists, and operating system profiles. By reconstructing the state of the system based on the data found in volatile memory, Volcano limits the places attackers can hide and provides a collaborative mechanism to rapidly investigate suspected systems and potential malware.

Features & Benefits

• Collaboration
  • Facilitates collaboration with team members.
• Threat Intelligence
  • Keeps users up to date with a dynamic threat environment.
• Orchestration
  • Orchestrates investigations with playbooks and workflows.
• Evidence Access
  • Provides access to, analysis of, and interpretation of evidence.
• Data Visualization
  • Visualizes and correlates data for better understanding.
• Threat Detection
  • Reveals stealthy malware and zero-day threats.