Walks Linked list of connections
Misses:
- Unlinked sockets
Commands
# List TCP connections (Vol2, XP/2003 only)
vol.py -f <mem> --profile=<profile> connections
BLUE TEAM / DFI / MEMORY / DUMP / VOLATILITY / Network
Walks Linked list of connections
# List TCP connections (Vol2, XP/2003 only)
vol.py -f <mem> --profile=<profile> connections