Abstract:There are many scenarios where, during a law-enforcement or incident response situation, it is of interest to obtain live session data stored in volatile memory (RAM) in Windows 10 machines, which may be locked by a login screen prompt. This work attempts to survey the bibliography for methods and tools that could, in theory or in practice, bypass said security mechanism and possibly aid digital forensic investigators and law-enforcement get the full picture of a case.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.