This repository contains a variety of plugins and scripts, related to the Volatility framework.
☆19Feb 9, 2025Updated last year
Alternatives and similar repositories for volatility-scripts
Users that are interested in volatility-scripts are comparing it to the libraries listed below
Sorting:
- Collection of Volatility2 profiles, generated against Linux kernels.☆55Oct 30, 2025Updated 4 months ago
- This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.☆21Sep 30, 2022Updated 3 years ago
- Generate Volatility3 profiles from BTF.☆31Dec 21, 2024Updated last year
- Collection of Linux and macOS Volatility3 Intermediate Symbol Files (ISF), suitable for memory analysis 🔍☆273Updated this week
- A curated list of ressources for Volatility 2 & 3☆13Mar 17, 2024Updated 2 years ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- Windows symbol tables for Volatility 3☆93Jul 11, 2024Updated last year
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆23Apr 22, 2021Updated 4 years ago
- A Discord Python Selfbot to put reactions on messages☆10Oct 12, 2025Updated 5 months ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆19Feb 26, 2024Updated 2 years ago
- Our team's CTF writeups☆11Jan 15, 2020Updated 6 years ago
- Fast, cross-platform PowerShell module to find files & folders, grep file content, and measure sizes—Linux-style find/grep/du made simple…☆22Updated this week
- rpv-web is a browser based frontend for the rpv library☆27Nov 21, 2025Updated 4 months ago
- Volatility, on Docker 🐳☆41Nov 20, 2025Updated 4 months ago
- Public PoC + Scanner and research for CVE-2025-68613: Critical RCE in n8n Workflow Automation via Expression Injection (CVSS 10.0). Inclu…☆22Dec 26, 2025Updated 2 months ago
- A few STUXNET samples and live traffic captures from July 2010 while many stuxnet implants were still operational.☆29Sep 17, 2024Updated last year
- Anti-Debugging detection and obufuscation techniques that involved the use of Win32 API functions.☆34Apr 4, 2016Updated 9 years ago
- Werkzeug password cracker☆19Nov 14, 2024Updated last year
- rpv is a v library for analyzing RPC servers and interfaces on the Windows operating system☆38Nov 21, 2025Updated 4 months ago
- Short writeups/solvers for interesting CTF challenges.☆16Nov 12, 2022Updated 3 years ago
- An open source investigation tool to collect and analyse public VK community wall posts☆35Sep 11, 2022Updated 3 years ago
- This tool allows to automatically test for Content Security Policy bypass payloads.☆44Sep 4, 2024Updated last year
- Metadata Cleaner – A CLI tool to remove metadata from images, PDFs, DOCX, audio, and video files. Privacy-focused, fast, and open-sourc…☆31Dec 19, 2025Updated 3 months ago
- An exercise to practice deobfuscating PowerShell Scripts.☆26Feb 10, 2023Updated 3 years ago
- ESXi Cyber Security Incident Response Script☆25Sep 4, 2024Updated last year
- FindCrypt for Ghidra written in Python☆26May 20, 2020Updated 5 years ago
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆45Mar 13, 2026Updated last week
- Regipy is an os independent python library for parsing offline registry hives☆270Mar 5, 2026Updated 2 weeks ago
- Queries for parsed spotlight database in sqlite☆13Dec 29, 2020Updated 5 years ago
- Official Dexcalibur documentation☆17May 27, 2021Updated 4 years ago
- A Simple CLI App to mark all EXCEL sheets visible (i.e. sets "Very Hidden" and "Hidden" to "Visible")☆11Apr 16, 2020Updated 5 years ago
- ☆15May 3, 2024Updated last year
- LogicalDOC Official Docker Image☆19Jan 9, 2026Updated 2 months ago
- A simple and light-weight file manager written in ASP☆24May 2, 2013Updated 12 years ago
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆173Mar 2, 2026Updated 2 weeks ago
- QC EDL Emulator based on Qiling☆25Nov 26, 2020Updated 5 years ago
- A JXA script for enumerating running processes, printed out in a json, parent-child tree.☆14Jan 28, 2022Updated 4 years ago
- ☆15May 26, 2021Updated 4 years ago