Daisy Dukes [aka Memsniff]

A proof-of-concept signature-based memory sniffer called “Memsniff” (originally “DaisyDukes”).

DaisyDukes is a memory sniffer that resides on a USB device. A researcher can plug it into an unattended machine that is turned on but has been locked and reboot the machine off a compact operating system contained on the drive.

For now, DaisyDukes remains very much a beta program, so it's not yet suitable for production. But it already shows great promise. For one, it's highly compact, which prevents the boot sequence from overwriting old data stored in the computer's RAM. For another, it's highly flexible, making it possible to sniff the password for a single application or grab the entire contents in memory.

Daisy Dukes then had a name change - to Memsniff.

Memsniff is a bootable memory sniffer which extracts passwords and other interesting information from memory, based on a catalog of known signatures. It can be copied onto a removable device, and used to extract data from memory of a cold-booted system.

If you are into this sort of shit, this is a definite bookmark.