Alternatives and similar repositories for volatility-scripts

Users that are interested in volatility-scripts are comparing it to the libraries listed below

• FarghlyMal / Config-Extractors
  ☆27Updated 6 months ago
• randomaccess3 / block-parser
  Parser for Windows PowerShell script block logs
  ☆13Updated 5 months ago
• cod3nym / detection-rules
  Collection of my own detection rules
  ☆20Updated last year
• leandrofroes / malware-research
  General malware analysis stuff
  ☆37Updated 9 months ago
• DissectMalware / yaradbg-frontend
  ☆39Updated last year
• ThisIsLibra / MalPull
  A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.
  ☆30Updated 2 years ago
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆26Updated 10 months ago
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Updated 2 years ago
• ArsenalRecon / SdbaParser
  Parser for Sdba memory pool tags
  ☆18Updated 3 years ago
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆53Updated 3 months ago
• Squiblydoo / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆19Updated 2 years ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆33Updated last month
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆41Updated 2 years ago
• plonxyz / 4n6pi
  ☆17Updated 10 months ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated 2 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆45Updated 2 years ago
• GDATAAdvancedAnalytics / winreg-tasks
  ☆19Updated 2 years ago
• herosi / triage-collector
  ☆22Updated 8 months ago
• anyrun / blog-scripts
  ☆30Updated 7 months ago
• 0xHasanM / Autopsy-Registry-Explorer
  Autopsy Module to analyze Registry Hives
  ☆15Updated 3 years ago
• Lyc4on / EvtXHunt
  EvtXHunt is an Autopsy plugin that is able to analyze Windows EVTX logs against a library of SIGMA rules.
  ☆16Updated 3 years ago
• volatilityfoundation / community3
  Volatility3 plugins developed and maintained by the community
  ☆58Updated 2 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆56Updated 3 weeks ago
• JPCERTCC / etw-scan
  ETW forensic tool for Volatility3 plugin
  ☆15Updated 7 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 6 months ago
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆25Updated 2 weeks ago
• strozfriedberg / qelp
  Quick ESXi Log Parser
  ☆21Updated 5 months ago
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆69Updated last year
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆33Updated last month
• MikeHorn-git / WAFS
  Hardened your Windows OS against forensics analysis
  ☆21Updated 6 months ago