Skip to content

Latest commit

 

History

History
79 lines (59 loc) · 1.77 KB

README.md

File metadata and controls

79 lines (59 loc) · 1.77 KB

R.A.M (Remote Anamnestic Mapper)

 (                          *     
 )\ )         (           (  `    
(()/(         )\          )\))(   
 /(_))     ((((_)(       ((_)()\  
(_))        )\ _ )\      (_()((_) 
| _ \       (_)_\(_)     |  \/  | 
|   /   _    / _ \    _  | |\/| | 
|_|_\  (_)  /_/ \_\  (_) |_|  |_| 

[Remote Anamnestic Mapper (v0.1 beta)]

R.A.M is a fast and simple ram dump retrieval tool. Multiple executable to better fit the needs of the user. Written in Go. R.A.M is mainly used to retrieve the memory dump of a remote machine. It can also be used to retrieve the memory dump of a local machine.

Installation

Server

$ git clone https://github.com/Pengrey/R.A.M.git
$ cd R.A.M/server
$ go build -o server
$ chmod +x server

Agent

$ git clone https://github.com/Pengrey/R.A.M.git
$ cd R.A.M/agent
$ go build -o agent
$ chmod +x agent

🚧 Warning

The agent relies on the tool LiME (Linux Memory Extractor) to retrieve the memory dump. You can download it here

The agent should also be run with root privileges.

Usage

Server

$ ./server -h
Usage of ./server:
  -port string
        Port to be used for communication (default "8080")
  -s    Remove prompt from startup

Agent

$ ./agent -h
Usage of ./agent:
  -LPORT string
        Port to be used for communication (default "8081")
  -RHOST string
        IP of the server (default "<local IP>")
  -RPORT string
        Port of the server (default "8080")

Demo

Demo.mp4

Changelog

Still in development phase. No changelog yet.

License

MIT