- http://www.rekall-forensic.com/faq.html: information on issues with symbol acquisition
ntkrnlmp.pdb for Windows 8.1 on Rig: GUID = 3BAEE2762F6442089EF8B926DDC8DBA61 Offset = 0x00014ccceb48
Scan for GUID of kernel
ntkrnlmp.pdb for Windows 8.1 on Rig: GUID = 3BAEE2762F6442089EF8B926DDC8DBA61 Offset = 0x00014ccceb48
Scan for GUID of kernel
#Mining Systems# ##Federation##
#Bounty Hunting Systems# ##Federation##
##Independent##
#Useful Switches
##Host Discovery -sL: List scan for basic host discovery. Uses reverse DNS to lookup hostnames without sending packets directly to the hosts. REQUIRES A DNS SERVER TO BE PRESENT.
-sn: Ping scan for host discovery. One step more intrusive than the list scan.
-O: OS identification scan
##Port Scans
##Packers:
##Section Analysis: