Alternatives and similar repositories for Volatility-BitLocker:

Users that are interested in Volatility-BitLocker are comparing it to the libraries listed below

• JPCERTCC / Windows-Symbol-Tables
  Windows symbol tables for Volatility 3
  ☆81Updated 7 months ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆91Updated 4 years ago
• tribalchicken / volatility-bitlocker
  Volatility plugin to extract BitLocker Full Volume Encryption Keys (FVEK)
  ☆65Updated 3 years ago
• keydet89 / RegRipper4.0
  RegRipper4.0
  ☆44Updated last year
• volatilityfoundation / community3
  Volatility3 plugins developed and maintained by the community
  ☆51Updated last year
• sk4la / volatility3-docker
  Volatility, on Docker 🐳
  ☆33Updated 7 months ago
• GDATAAdvancedAnalytics / winreg-tasks
  ☆18Updated 2 years ago
• harelsegev / prefetch-hash-cracker
  A small util to brute-force prefetch hashes
  ☆76Updated 2 years ago
• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆204Updated last year
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆77Updated 9 months ago
• ufrisk / MemProcFS-plugins
  ☆56Updated 4 months ago
• kevthehermit / volatility_symbols
  Volatility Symbol Generator for Linux Kernels
  ☆32Updated last year
• DidierStevens / FalsePositives
  Tools that trigger False Positive AV alerts
  ☆44Updated last month
• Immersive-Labs-Sec / SliverC2-Forensics
  A collection of tools and detections for the Sliver C2 Frameworj
  ☆116Updated last year
• airbus-cert / minusone
  Powershell Linter
  ☆50Updated 2 weeks ago
• tijldeneut / dpapilab-ng
  DPAPILAB Next Gen, script collection
  ☆79Updated 2 years ago
• DidierStevens / AdHoc
  AdHoc solutions
  ☆48Updated last year
• fox-it / dissect.cobaltstrike
  Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles
  ☆159Updated 4 months ago
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆112Updated 5 months ago
• volexity / donut-decryptor
  Retrieve inner payloads from Donut samples
  ☆90Updated last year
• strozfriedberg / cobaltstrike-config-extractor
  Cobalt Strike Beacon configuration extractor and parser.
  ☆150Updated 3 years ago
• p0dalirius / volatility3-symbols
  Memory mapping profiles for forensic analysis using volatility 3
  ☆25Updated 2 years ago
• BSI-Bund / RdpCacheStitcher
  RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
  ☆249Updated last year
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆100Updated this week
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆75Updated 6 months ago
• LETHAL-FORENSICS / Collect-MemoryDump
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆225Updated this week
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆73Updated 11 months ago
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆59Updated 2 months ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆108Updated 3 years ago
• Immersive-Labs-Sec / msrc-api
  A collection of tools to interact with Microsoft Security Response Center API
  ☆95Updated last year