bridgeythegeek / ndispktscan
NDISPktScan is a plugin for the Volatility Framework. It parses the Ethernet packets stored by ndis.sys in Windows kernel space memory.
☆11Updated 9 years ago
Related projects ⓘ
Alternatives and complementary repositories for ndispktscan
- Quantum Insert Backdoor POC☆10Updated 7 years ago
- DeepToad is a library and a tool to clusterize similar files using fuzzy hashing☆20Updated 4 years ago
- Print the strings of encoded printable characters in files☆12Updated 9 years ago
- ☆12Updated 6 years ago
- Server for receiving autorun data from the clients☆13Updated 7 years ago
- Tool for analysis of Windows Prefetch files☆26Updated 6 years ago
- ☆12Updated 3 years ago
- Plugins for the Viper Framework☆14Updated 5 years ago
- The Multiplatform Linux Sandbox☆15Updated 10 months ago
- Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…☆11Updated 5 years ago
- Repository of Information sharing on threats and indicators☆12Updated 4 years ago
- Carve Windows Prefetch files from arbitrary binary data☆14Updated 7 years ago
- MalRecon - Basic Malware Reconnaissance and Analysis Tool☆26Updated 7 years ago
- Parses Java Cache IDX files☆39Updated 6 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- My personal Automated Malware Analysis Sandboxes and Services☆22Updated 7 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆27Updated 8 years ago
- SDBbot Unpacker Python 2.7☆9Updated 4 years ago
- ☆35Updated 6 years ago
- ☆36Updated 5 years ago
- API functions for Malware Research☆35Updated 5 years ago
- Generate MAEC XML from Ero Carrera's pefile output☆15Updated 7 years ago
- Useful Windows and AD tools☆15Updated 2 years ago
- Script to parse Process Monitor XML log file, and give you a summary report.☆23Updated 8 years ago
- Metasploit modules, powershell scripts and custom exploit to perform local privilege escalation on windows systems.☆10Updated 7 years ago