WEBVTT 00:01.270 --> 00:08.870 In this lecture, we're going to install the volatility framework volatility framework here. 00:08.890 --> 00:15.510 So now you're going to enter the first Volatility foundation.org website and click on downloads here. 00:15.520 --> 00:21.070 And after clicking downloads, you in this in this course, we're going to use the volatility two, 00:21.100 --> 00:24.550 which is the most stable version of the volatility. 00:24.550 --> 00:28.540 And we're going to click on the Select Your Window operating system. 00:28.540 --> 00:33.730 And in this course I'm going to click on the Linux standalone executable. 00:33.730 --> 00:39.160 And because I use the Linux in this case here. 00:39.160 --> 00:45.400 So but if you are use Windows or menu, so you can you can download both of them because the volatility 00:45.430 --> 00:48.010 framework actually is based on Python here. 00:48.010 --> 00:51.760 So you can run it actually pretty wide variety of. 00:53.730 --> 00:54.180 Here. 00:54.210 --> 00:55.440 Click on this. 00:55.500 --> 00:55.800 Oops. 00:57.310 --> 00:57.910 You know, let's. 00:57.910 --> 01:00.170 Let's actually, uh. 01:02.290 --> 01:04.120 Here open again and. 01:04.120 --> 01:04.540 Yeah. 01:05.940 --> 01:08.410 Why we don't have the downloads here. 01:09.170 --> 01:09.480 Sure. 01:13.710 --> 01:14.970 This is a Windows standalone. 01:15.120 --> 01:16.110 We're going to install the. 01:17.320 --> 01:23.390 We're going to install the Linux standalone here and click on save file. 01:23.410 --> 01:25.780 It's 31MB. 01:27.190 --> 01:28.500 As you can see here. 01:41.830 --> 01:42.490 Here. 01:42.490 --> 01:45.100 Let's open our volatility here. 01:45.100 --> 01:47.500 And as you can see, the file is downloaded. 01:47.530 --> 02:00.400 Open this and extract the let's extract to the desktop here in this here volatility and extract to volatility 02:00.400 --> 02:00.820 folder. 02:00.820 --> 02:02.160 Actually, did we extract? 02:02.200 --> 02:05.740 Yeah, it is the volatility fall in the volatility folder here. 02:05.740 --> 02:13.700 So let's open the terminal and look here, see the desktop here and let me. 02:13.930 --> 02:23.260 Okay, so let's see the desktop here and let's see the volatility, let's see the volatility Linux standalone. 02:23.260 --> 02:26.890 And as you can see, there isn't files here, which is. 02:27.650 --> 02:35.420 So in order to run this full text file, as you can see, this is 64 bit and 32 bit uh, here a lecture. 02:35.420 --> 02:44.780 So if you Linux is 64 bit, which probably your Linux is 64 bit in most Linux in this uh, 2023 is actually 02:45.120 --> 02:46.550 uh, 64 bit. 02:46.550 --> 02:51.440 So that's why we're going to use a 64 bit version, uh, Python. 02:51.530 --> 03:03.470 Uh, no, actually we can use just the volatility volatility 2.5 Linux and 60 x. 03:05.850 --> 03:06.360 Here. 03:06.960 --> 03:09.390 And as you can see, the is round. 03:09.390 --> 03:14.160 So you in this case we can also run it with sudo here. 03:14.160 --> 03:20.700 As you can see here, it's the with this way we're going to get more privileges to do system to do analysis 03:20.700 --> 03:22.140 on system files also. 03:22.140 --> 03:25.320 And yeah this is just as simple as that. 03:25.320 --> 03:30.990 You can install and download volatility with just these 2 or 3 minutes. 03:30.990 --> 03:32.460 So it's not a big file. 03:32.460 --> 03:38.700 And the next lectures we're going to download the sample images to analyze with use using the volatility 03:38.730 --> 03:39.600 framework.