elceef / bitlocker
Volatility Framework plugin for extracting BitLocker FVEK (Full Volume Encryption Key)
☆227Updated 8 years ago
Alternatives and similar repositories for bitlocker:
Users that are interested in bitlocker are comparing it to the libraries listed below
- Comae Hibernation File Decompressor☆148Updated 2 years ago
- Autoruns plugin for the Volatility framework☆121Updated 5 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆264Updated 3 years ago
- Volatility plugins developed and maintained by the community☆361Updated 4 years ago
- Web App for Volatility framework☆380Updated 5 months ago
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆191Updated last month
- A modern Python-3-based alternative to RegRipper☆194Updated last month
- Various snippets created during malware analysis☆458Updated 2 years ago
- Volatility profiles for Linux and Mac OS X☆323Updated 2 years ago
- Automatically exported from code.google.com/p/creddump☆249Updated 5 years ago
- Web interface for the Volatility Memory Forensics Framework☆260Updated 7 years ago
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆194Updated 7 years ago
- Tool suite for inspecting NTFS artifacts.☆221Updated last year
- Volatility plugin to extract BitLocker Full Volume Encryption Keys (FVEK)☆65Updated 3 years ago
- An AFF4 C++ implementation.☆200Updated 2 years ago
- Replay RDP traffic from PCAP☆193Updated 5 years ago
- Differential Analysis of Malware in Memory☆211Updated 8 years ago
- Windows Live Artifacts Acquisition Script☆186Updated 2 years ago
- inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…☆285Updated last year
- A python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local hos…☆161Updated 4 years ago
- An NTFS/FAT parser for digital forensics & incident response☆203Updated 5 months ago
- Python script to decode common encoded PowerShell scripts☆216Updated 6 years ago
- Windows Prefetch parser. Supports all known versions from Windows XP to Windows 10.☆113Updated 3 months ago
- ☆429Updated 2 years ago
- Page File analysis tools.☆127Updated 9 years ago
- ☆302Updated 4 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆117Updated 11 months ago
- Malware static analysis framework☆177Updated 5 years ago
- ☆394Updated 4 years ago
- Cross-platform, open-source shellbag parser☆149Updated 2 years ago