Abyss-W4tcher / volatility2-profilesView external linksLinks
Collection of Volatility2 profiles, generated against Linux kernels.
☆54Oct 30, 2025Updated 3 months ago
Alternatives and similar repositories for volatility2-profiles
Users that are interested in volatility2-profiles are comparing it to the libraries listed below
Sorting:
- Collection of Linux and macOS Volatility3 Intermediate Symbol Files (ISF), suitable for memory analysis 🔍☆259Jan 20, 2026Updated 3 weeks ago
- Generate Volatility3 profiles from BTF.☆31Dec 21, 2024Updated last year
- 使用Docker一键制作vol3取证需要的的SymbolTables☆12Aug 31, 2025Updated 5 months ago
- A curated list of ressources for Volatility 2 & 3☆13Mar 17, 2024Updated last year
- Windows symbol tables for Volatility 3☆92Jul 11, 2024Updated last year
- Python tool to parse and decrypt files quarantined by windows defender☆13Feb 25, 2023Updated 2 years ago
- My Linux profiles built for Volatility 2/3☆10Oct 11, 2025Updated 4 months ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- Windows日志解析☆31Feb 6, 2026Updated last week
- x64dbg plugin for running python3 script. Focus on doing malware analyst and unpacking☆65Feb 27, 2025Updated 11 months ago
- AI Powered Sensitive Information Detection☆20Mar 13, 2024Updated last year
- A pentest reporting tool written in Python. Free yourself from Microsoft Word.☆13Jun 13, 2023Updated 2 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆19Feb 26, 2024Updated last year
- Backstage Parser☆33Jun 23, 2022Updated 3 years ago
- ETW forensic tool for Volatility3 plugin☆17Nov 15, 2024Updated last year
- Explore configuration of an MPU and RTOS for Cortex-M on a QEMU simulated system☆14Mar 21, 2021Updated 4 years ago
- Parses USB connection artifacts from offline Registry hives☆107Updated this week
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Rust symbol recovery tool☆78Jul 1, 2025Updated 7 months ago
- GTFO Command Line Interface for easy binaries search commands that can be used to bypass local security restrictions in misconfigured sys…☆18Jan 26, 2026Updated 2 weeks ago
- A centralized and enhanced memory analysis platform☆517Jul 13, 2025Updated 7 months ago
- Regipy is an os independent python library for parsing offline registry hives☆266Jan 22, 2026Updated 3 weeks ago
- Conceptual Methods for Finding Commonalities in Macho Files☆12Mar 21, 2024Updated last year
- 专为取证比赛设计的Android-Data数据库分析工具;快速解析手机镜像数据库文件,精准提取证据☆35Nov 5, 2025Updated 3 months ago
- Volatility, on Docker 🐳☆41Nov 20, 2025Updated 2 months ago
- Memory acquisition for Linux that makes sense.☆219Nov 21, 2023Updated 2 years ago
- This module exploits a vulnerability in WinRAR (CVE-2023-38831). When a user opens a crafted RAR file and its embedded document, a script…☆15Sep 8, 2023Updated 2 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Jun 28, 2023Updated 2 years ago
- Registry Explorer bookmark definitions☆44Dec 19, 2024Updated last year
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆23Apr 22, 2021Updated 4 years ago
- DingTalkLiveDownload——钉钉直播回放下载器☆18Oct 17, 2024Updated last year
- A collection of tools and detections for the Sliver C2 Frameworj☆133Apr 24, 2023Updated 2 years ago
- convert ELF/DWARF symbol and type information into vol3's intermediate JSON☆145Oct 9, 2024Updated last year
- Volatility 3 Plugins☆21Oct 3, 2022Updated 3 years ago
- ☆25Jul 23, 2024Updated last year
- Manage attack surface data on Elasticsearch☆24Nov 20, 2023Updated 2 years ago
- Small tool to convert beteween the PE alignments (raw and virtual).☆111Dec 28, 2022Updated 3 years ago
- ☆62Oct 12, 2024Updated last year
- lnk_parser is a full rust implementation to parse windows LNK files☆22Jul 12, 2025Updated 7 months ago