Abyss-W4tcher / volatility2-profiles
Collection of Volatility2 profiles, generated against Linux kernels.
β30Updated this week
Related projects β
Alternatives and complementary repositories for volatility2-profiles
- Collection of Linux and macOS Volatility3 Intermediate Symbol Files (ISF), suitable for memory analysis πβ74Updated this week
- A collection of tools and detections for the Sliver C2 Frameworjβ109Updated last year
- Windows symbol tables for Volatility 3β73Updated 4 months ago
- Volatility, on Docker π³β29Updated 4 months ago
- Volatility3 Linux profilesβ26Updated this week
- Repository of Yara Rulesβ88Updated last month
- Powershell Linterβ46Updated last month
- A ProcessMonitor visualization application written in rust.β176Updated last year
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!β82Updated last year
- Collection of my volatility3 pluginsβ15Updated 2 months ago
- Memory mapping profiles for forensic analysis using volatility 2β45Updated 2 years ago
- RegRipper4.0β39Updated last year
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performsβ¦β161Updated 6 months ago
- Volatility Symbol Generator for Linux Kernelsβ31Updated last year
- A suite of tools to disrupt campaigns using the Sliver C2 framework.β248Updated last year
- PowerShell Script Analyzerβ66Updated last year
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extracβ¦β140Updated 2 months ago
- Contains compiled binaries of Volatilityβ29Updated last month
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hosβ¦β29Updated 2 years ago
- β36Updated 7 months ago
- A small util to brute-force prefetch hashesβ73Updated 2 years ago
- Some of my Malware Analysis writeups.β42Updated last year
- Volatility 3 Pluginsβ19Updated 2 years ago
- This repo is all about Blue teamming and CyberDefenders Write-up for their DFIR challengesβ16Updated last year
- Memory mapping profiles for forensic analysis using volatility 3β24Updated 2 years ago
- This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.β126Updated last year
- A collection of tools, scripts and personal researchβ113Updated 4 months ago
- β26Updated last week
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. Tβ¦β105Updated last month
- shared samples from #dailyphish and/or #apt tweetsβ35Updated this week