====== La mémoire vive ======
===== Outils d'extraction =====
  * LiME : https://github.com/504ensicsLabs/LiME
  * pmem :
    * Linux : https://github.com/google/rekall/releases/download/v1.5.1/linpmem-2.1.post4
    * Mac : https://github.com/google/rekall/releases/download/v1.5.1/osxpmem-2.1.post4.zip
    * Windows : https://github.com/google/rekall/releases/download/v1.5.1/winpmem-2.1.post4.exe

===== Outils d'analyses =====
==== Avec reconstruction de la structure de la RAM ====
  * Volatility : https://github.com/volatilityfoundation/volatility/
    * Les profiles mac/linux : https://github.com/volatilityfoundation/profiles
    * Les commandes : https://github.com/volatilityfoundation/volatility/wiki
  * Rekall : https://github.com/google/rekall/
    * Les profiles : https://github.com/google/rekall-profiles
    * Les commandes : http://www.rekall-forensic.com/documentation-1/rekall-documentation/plugins
==== Sans reconstruction ====
  * Yara : https://github.com/VirusTotal/yara
  * Grep