Comment Re:Not as clever as it sounds (Score 1) 268
If you know what the stack frame of the software you're targeting looks like, you don't even have to try every n-bit string in the whole memory dump, you can just go straight to whatever memory offset the key's always stored at. It's not like TrueCrypt just puts the key at a random spot in the middle of some other program's RAM page.