BinaryDefense/YaraMemoryScanner external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

BinaryDefense/YaraMemoryScanner

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BinaryDefense/YaraMemoryScanner)

Close

BinaryDefense / YaraMemoryScannerView on GitHubMore

• External links
• Readme badge

Simple PowerShell script to enable process scanning with Yara.

☆100Oct 4, 2022Updated 3 years ago

Alternatives and similar repositories for YaraMemoryScanner

Users that are interested in YaraMemoryScanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• sandmaxprime / VagrantMalwareWin10VM

  View on GitHub
  Vagrant Files to create a Virtualbox VM for Malware Analysis
  ☆13Jun 1, 2021Updated 4 years ago
• eversinc33 / Godmode

  View on GitHub
  Tool for playing with Windows Access Token manipulation.
  ☆83Nov 28, 2022Updated 3 years ago
• CrowdStrike / SuperMem

  View on GitHub
  A python script developed to process Windows memory images based on triage type.
  ☆266Nov 25, 2023Updated 2 years ago
• EricZimmerman / USBDevices

  View on GitHub
  Get USB Devices from Registry hives
  ☆22Nov 15, 2021Updated 4 years ago
• blueteam0ps / memOptix

  View on GitHub
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆97May 28, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• cado-security / rip_raw

  View on GitHub
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆132Jan 31, 2022Updated 4 years ago
• ZeroMemoryEx / SleepKiller

  View on GitHub
  Bypass Malware Time Delays
  ☆105Sep 23, 2022Updated 3 years ago
• Apr4h / GetInjectedThreads

  View on GitHub
  C# Implementation of Jared Atkinson's Get-InjectedThread.ps1
  ☆55Jul 11, 2021Updated 4 years ago
• mattifestation / AntimalwareBlight

  View on GitHub
  Execute PowerShell code at the antimalware-light protection level.
  ☆143Dec 13, 2022Updated 3 years ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools

  View on GitHub
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆66Jul 7, 2022Updated 3 years ago
• Mr-Un1k0d3r / AMSI-ETW-Patch

  View on GitHub
  Patch AMSI and ETW
  ☆252May 8, 2024Updated 2 years ago
• stuhli / awesome-event-ids

  View on GitHub
  Collection of Event ID ressources useful for Digital Forensics and Incident Response
  ☆652Jun 19, 2024Updated last year
• CymulateResearch / Blindside

  View on GitHub
  Utilizing hardware breakpoints to evade monitoring by Endpoint Detection and Response platforms
  ☆140Dec 20, 2022Updated 3 years ago
• sbousseaden / YaraHunts

  View on GitHub
  Random hunting ordiented yara rules
  ☆96Mar 27, 2023Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• sisoma2 / malware_analysis

  View on GitHub
  Scripts, Yara rules and other files developed during malware investigations
  ☆27Aug 19, 2022Updated 3 years ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool

  View on GitHub
  Linux Baseline and Forensic Triage Tool - BETA
  ☆60Mar 10, 2026Updated 2 months ago
• dwmetz / CyberPipe

  View on GitHub
  An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
  ☆340Dec 3, 2025Updated 5 months ago
• passthehashbrowns / suspendedunhook

  View on GitHub
  ☆42Apr 22, 2021Updated 5 years ago
• X-Junior / Malware-IDAPython-Scripts

  View on GitHub
  ☆23May 23, 2024Updated last year
• Offensive-Panda / on-disk-detection-bypass

  View on GitHub
  Direct syscalls Injection to bypass AV/EDR
  ☆11May 18, 2024Updated 2 years ago
• swisscom / Invoke-Forensics

  View on GitHub
  Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
  ☆117Nov 28, 2023Updated 2 years ago
• theflakes / fmd

  View on GitHub
  Windows file metadata / forensic tool.
  ☆20Oct 12, 2025Updated 7 months ago
• g-les / 100DaysofYARA

  View on GitHub
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Jan 18, 2023Updated 3 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• embee-research / CyberChef

  View on GitHub
  ☆16Mar 22, 2023Updated 3 years ago
• AndrewRathbun / Awesome-KAPE

  View on GitHub
  A curated list of KAPE-related resources
  ☆186May 1, 2025Updated last year
• signorrayan / Splunk-Threat-Hunting

  View on GitHub
  This repository contains Splunk queries to hunt some anomalies
  ☆47Jul 28, 2022Updated 3 years ago
• Beercow / OneDriveExplorer

  View on GitHub
  OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…
  ☆232Jan 6, 2026Updated 4 months ago
• zimnyaa / PhaseDive

  View on GitHub
  Sleep Obfuscation
  ☆47Oct 13, 2022Updated 3 years ago
• ydkhatri / jarp

  View on GitHub
  Just Another broken Registry Parser (JARP)
  ☆16May 23, 2024Updated last year
• blackhillsinfosec / EventLogging

  View on GitHub
  Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
  ☆487Nov 21, 2024Updated last year
• Kirtar22 / ThreatHunting_with_Osquery

  View on GitHub
  Threat Hunting & Incident Investigation with Osquery
  ☆219Mar 30, 2022Updated 4 years ago
• tenable / atomic-red-team

  View on GitHub
  Small and highly portable detection tests based on MITRE's ATT&CK.
  ☆11Feb 17, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• sdcampbell / phpLFI

  View on GitHub
  Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via in…
  ☆14Sep 29, 2022Updated 3 years ago
• daem0nc0re / TangledWinExec

  View on GitHub
  PoCs and tools for investigation of Windows process execution techniques
  ☆959Feb 2, 2026Updated 3 months ago
• StrangerealIntel / Orion

  View on GitHub
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆141Nov 19, 2023Updated 2 years ago
• nasbench / EVTX-ETW-Resources

  View on GitHub
  Event Tracing For Windows (ETW) Resources
  ☆428Oct 30, 2025Updated 6 months ago
• LETHAL-FORENSICS / Collect-MemoryDump

  View on GitHub
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆257Oct 29, 2025Updated 6 months ago
• thefLink / Hunt-Sleeping-Beacons

  View on GitHub
  Aims to identify sleeping beacons
  ☆669Jan 25, 2026Updated 3 months ago
• trustedsec / RisingSun

  View on GitHub
  RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
  ☆11Jan 14, 2021Updated 5 years ago