Collection of Volatility2 profiles, generated against Linux kernels.
☆54Oct 30, 2025Updated 4 months ago
Alternatives and similar repositories for volatility2-profiles
Users that are interested in volatility2-profiles are comparing it to the libraries listed below
Sorting:
- This repository contains a variety of plugins and scripts, related to the Volatility framework.☆17Feb 9, 2025Updated last year
- Generate Volatility3 profiles from BTF.☆31Dec 21, 2024Updated last year
- 使用Docker一键制作vol3取证需要的的SymbolTables☆12Aug 31, 2025Updated 6 months ago
- A curated list of ressources for Volatility 2 & 3☆13Mar 17, 2024Updated last year
- Windows symbol tables for Volatility 3☆93Jul 11, 2024Updated last year
- Memory mapping profiles for forensic analysis using volatility 2☆53Sep 23, 2022Updated 3 years ago
- Volatility3 Linux profiles☆76Dec 8, 2025Updated 2 months ago
- An Awesome, Feature Rich Discord Bot for Hosting and Managing CTF Challenges on Discord Written in Python3☆11Jun 29, 2024Updated last year
- IDA plugin helping reverse-engineering rust binaries☆32Jul 31, 2024Updated last year
- My Linux profiles built for Volatility 2/3☆10Oct 11, 2025Updated 4 months ago
- Python tool to parse and decrypt files quarantined by windows defender☆13Feb 25, 2023Updated 3 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- Windows日志解析☆31Feb 6, 2026Updated last month
- AI Powered Sensitive Information Detection☆20Mar 13, 2024Updated last year
- x64dbg plugin for running python3 script. Focus on doing malware analyst and unpacking☆68Feb 19, 2026Updated 2 weeks ago
- A pentest reporting tool written in Python. Free yourself from Microsoft Word.☆14Jun 13, 2023Updated 2 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆19Feb 26, 2024Updated 2 years ago
- Backstage Parser☆33Jun 23, 2022Updated 3 years ago
- ETW forensic tool for Volatility3 plugin☆17Nov 15, 2024Updated last year
- Explore configuration of an MPU and RTOS for Cortex-M on a QEMU simulated system☆14Mar 21, 2021Updated 4 years ago
- Parses USB connection artifacts from offline Registry hives☆107Feb 8, 2026Updated 3 weeks ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- GTFO Command Line Interface for easy binaries search commands that can be used to bypass local security restrictions in misconfigured sys…☆18Jan 26, 2026Updated last month
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- Rust symbol recovery tool☆80Feb 19, 2026Updated 2 weeks ago
- A centralized and enhanced memory analysis platform☆520Jul 13, 2025Updated 7 months ago
- ☆37Sep 10, 2025Updated 5 months ago
- Regipy is an os independent python library for parsing offline registry hives☆266Jan 22, 2026Updated last month
- Conceptual Methods for Finding Commonalities in Macho Files☆12Mar 21, 2024Updated last year
- 专为取证比赛设计的Android-Data数据库分析工具;快速解析手机镜像数据库文件,精准提取证据☆35Nov 5, 2025Updated 4 months ago
- Volatility, on Docker 🐳☆41Nov 20, 2025Updated 3 months ago
- Memory acquisition for Linux that makes sense.☆220Nov 21, 2023Updated 2 years ago
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆697Oct 22, 2025Updated 4 months ago
- This module exploits a vulnerability in WinRAR (CVE-2023-38831). When a user opens a crafted RAR file and its embedded document, a script…☆15Sep 8, 2023Updated 2 years ago
- ☆26Jul 18, 2024Updated last year
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Jun 28, 2023Updated 2 years ago
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆23Apr 22, 2021Updated 4 years ago
- A collection of tools and detections for the Sliver C2 Frameworj☆132Apr 24, 2023Updated 2 years ago
- convert ELF/DWARF symbol and type information into vol3's intermediate JSON☆145Oct 9, 2024Updated last year