504ensicsLabs / DAMM
Differential Analysis of Malware in Memory
☆211Updated 7 years ago
Alternatives and similar repositories for DAMM:
Users that are interested in DAMM are comparing it to the libraries listed below
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆194Updated 7 years ago
- Web interface for the Volatility Memory Forensics Framework☆260Updated 7 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆264Updated 3 years ago
- Python script to decode common encoded PowerShell scripts☆216Updated 6 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆115Updated 9 months ago
- Windows Live Artifacts Acquisition Script☆186Updated 2 years ago
- Query and report user logons relations from MS Windows Security Events☆242Updated 6 years ago
- Web App for Volatility framework☆378Updated 4 months ago
- A python script used to parse the SAM registry hive.☆72Updated 7 years ago
- A warehouse for your malware☆134Updated 11 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆154Updated 5 years ago
- A python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local hos…☆161Updated 4 years ago
- Page File analysis tools.☆126Updated 9 years ago
- A collection of scripts to initialize a windows VM to run all the malwares!☆106Updated 4 years ago
- ☆275Updated last year
- Command line tool for scanning streams within office documents plus xor db attack☆126Updated last year
- Reconstruct process trees from event logs☆147Updated 4 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆82Updated 7 years ago
- ☆151Updated 6 years ago
- Autoruns plugin for the Volatility framework☆121Updated 5 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- 16,432 Free Yara rules created by☆383Updated 5 years ago
- Auto Installer Script for Cuckoo Sandbox☆165Updated 6 years ago
- ☆202Updated last year
- a Malware/Threat Analyst Desktop☆89Updated 9 years ago
- Malware Repository Framework☆100Updated 7 years ago
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- Lazy Office Analyzer☆119Updated 8 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆220Updated 4 years ago
- Django web interface for managing Yara rules☆190Updated 6 years ago