504ensicsLabs / LiME
LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures f…
☆1,754Updated 3 months ago
Alternatives and similar repositories for LiME:
Users that are interested in LiME are comparing it to the libraries listed below
- Rekall Memory Forensic Framework☆1,932Updated 4 years ago
- An advanced memory forensics framework☆7,462Updated last year
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,834Updated last month
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,376Updated this week
- Binary analysis and management framework☆1,543Updated last year
- The Python interface for YARA☆671Updated last month
- Volatility 3.0 development☆2,822Updated this week
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,660Updated 11 months ago
- This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format…☆4,007Updated 3 months ago
- Repository of yara rules☆4,247Updated 9 months ago
- Super timeline all the things☆1,759Updated 3 weeks ago
- Please no pull requests for this repository. Thanks!☆2,089Updated 3 weeks ago
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,587Updated 2 years ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,136Updated last year
- AVML - Acquire Volatile Memory for Linux☆895Updated this week
- Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, A…☆1,898Updated 2 months ago
- The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…☆2,676Updated this week
- Corelan Repository for mona.py☆1,721Updated 9 months ago
- Reverse engineering framework in Python☆3,525Updated 4 months ago
- YARA signature and IOC database for my scanners and tools☆2,525Updated last month
- GRR Rapid Response: remote live forensics for incident response☆4,823Updated last month
- PEDA - Python Exploit Development Assistance for GDB☆5,934Updated 5 months ago
- Malware Configuration And Payload Extraction☆2,109Updated this week
- yarGen is a generator for YARA rules☆1,586Updated 7 months ago
- This is the development tree. Production downloads are at:☆1,148Updated this week
- Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors☆3,336Updated last year
- A curated list of awesome YARA rules, tools, and people.☆3,646Updated 2 months ago
- DRAKVUF Black-box Binary Analysis☆1,081Updated last month
- A toolset to make a system look as if it was the victim of an APT attack☆2,497Updated last year
- Python low-interaction honeyclient☆1,000Updated last week