As was done in the Redline section, the first plugins that will be discussed are those that provide data around the processes running on the system at the time of the memory capture. The aim here is to identify those processes that appear suspicious and to identify any related data associated with them.