504ensicsLabs / LiMELinks
LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures f…
☆1,911Updated last month
Alternatives and similar repositories for LiME
Users that are interested in LiME are comparing it to the libraries listed below
Sorting:
- Rekall Memory Forensic Framework☆1,989Updated 5 years ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆2,044Updated 3 weeks ago
- An advanced memory forensics framework☆7,924Updated 7 months ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,817Updated 2 weeks ago
- Please no pull requests for this repository. Thanks!☆2,380Updated 2 weeks ago
- Super timeline all the things☆1,982Updated this week
- The Python interface for YARA☆722Updated 7 months ago
- Binary analysis and management framework☆1,556Updated 2 years ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,208Updated 4 months ago
- AVML - Acquire Volatile Memory for Linux☆1,035Updated 2 weeks ago
- This is the development tree. Production downloads are at:☆1,307Updated last month
- yarGen is a generator for YARA rules☆1,758Updated 2 months ago
- Fuzzy hashing API and fuzzy hashing tool☆767Updated 3 months ago
- The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…☆2,950Updated 2 weeks ago
- Loki - Simple IOC and YARA Scanner☆3,700Updated 2 months ago
- Repository of yara rules☆4,649Updated last year
- Indicators of Compromises (IOC) of our various investigations☆1,901Updated last week
- Scalpel is an open source data carving tool. It is not being actively maintained.☆668Updated last year
- Volatility 3.0 development☆3,779Updated last week
- oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware a…☆3,250Updated 6 months ago
- A static analyzer for PE executables.☆1,096Updated last year
- YARA signature and IOC database for my scanners and tools☆2,827Updated last week
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,680Updated last year
- DRAKVUF Black-box Binary Analysis☆1,191Updated 2 months ago
- Platform for emulation and dynamic analysis of Linux-based firmware☆2,022Updated last year
- Volatility profiles for Linux and Mac OS X☆327Updated 3 years ago
- Platform Security Assessment Framework☆3,160Updated 2 weeks ago
- Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors☆3,424Updated 2 years ago
- Digital Forensics artifact repository☆1,187Updated last week
- pefile is a Python module to read and work with PE (Portable Executable) files☆2,000Updated last year