cube0x8 / ChromeRagamuffinLinks
Google Chrome internals analysis using Volatility
☆42Updated 2 years ago
Alternatives and similar repositories for ChromeRagamuffin
Users that are interested in ChromeRagamuffin are comparing it to the libraries listed below
Sorting:
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆41Updated 6 years ago
- A Volatility plugin for finding sqlite database rows☆22Updated 5 years ago
- radare2 script to help on COM objects reverse engineering☆11Updated 8 years ago
- pure Python binary analysis framework☆23Updated 6 years ago
- Plugins for the Viper Framework☆14Updated 5 years ago
- ☆36Updated 5 years ago
- Basic file metadata gathering script☆21Updated 2 months ago
- Tool for analysis of Windows Prefetch files☆26Updated 6 years ago
- A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed☆16Updated 9 years ago
- The Multiplatform Linux Sandbox☆16Updated last year
- ActiveMime File Format Documentation☆18Updated 3 years ago
- Recover event log entries from an image by heurisitically looking for record structures.☆27Updated 9 years ago
- Radare2 Metadata Extraction to Elasticsearch☆23Updated last year
- A collection of Volatility Framework plugins.☆27Updated 11 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- ☆13Updated 9 years ago
- Handy scripts to speed up malware analysis☆35Updated last year
- Rekall Memory Forensic Framework☆32Updated 5 years ago
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34Updated 6 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 7 years ago
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆51Updated 6 years ago
- DeepToad is a library and a tool to clusterize similar files using fuzzy hashing☆20Updated 5 years ago
- Tool to decompress data from Windows 10 page files and memory dumps, that has been compressed by the Windows 10 memory manager.☆51Updated 6 years ago
- Generate bulk YARA rules from YAML input☆22Updated 5 years ago
- Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"☆27Updated 5 years ago
- ☆43Updated 6 years ago
- Script to parse Process Monitor XML log file, and give you a summary report.☆23Updated 9 years ago
- A python script that can be used to scan data within in an IDB using Yara.☆23Updated 6 years ago
- ☆32Updated last year
- The Damn Vulnerable Router Firmware Project☆30Updated 7 years ago