Hello. I have a project to develop a tool that reads Windows 7 raw memory dump. My lecturer says that he'd rather we use python or c coz that's his specialy but we can choose whatever. We chose python (bcoz i feel like its an opportunity to further learn about python) but what do you guys think? what language would be a good choice? then theres the whole GUI thing to think about, if we use python we gotta find a GUI framework etc...
Anyway, so this tool is suppose to get the network packet from a memory dump file and then analyse it to get some data. We're having trouble just trying to figure out where to start looking. i mean obviously reading through the pcap is one place to start but then what else? what else do we need to start chugging this train along? to actually start development.
My lecturer has given us all the functional requirements, things the tool should be able to do like calculating hash, detect ip packet, get info from ip packet, etc. but to actually start coding, what else should we look into besides pcap?
Any direction/help/insturctions, we are forever thankful for.
