How does using virtual disks achieve a fileless approach in penetration testing, and what advantages does it offer?

This technique maps part of the system's memory as a RAM disk using virtual disk software like ImDisk. Instead of writing malicious files to the physical hard drive, all file operations occur in memory. The key advantages are that no traces remain on the hard drive (so file recovery forensics fails) and the entire virtual disk disappears after a system reboot, making it ideal for stealthy, fileless implementation.