google / rekall

Related projects ⓘ

Alternatives and complementary repositories for rekall

• viper-framework / viper
  Binary analysis and management framework
  ☆1,539Updated last year
• 504ensicsLabs / LiME
  LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices…
  ☆1,727Updated last month
• mandiant / flare-fakenet-ng
  FakeNet-NG - Next Generation Dynamic Network Analysis Tool
  ☆1,806Updated this week
• google / grr
  GRR Rapid Response: remote live forensics for incident response
  ☆4,785Updated this week
• mandiant / flare-floss
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,276Updated this week
• log2timeline / plaso
  Super timeline all the things
  ☆1,736Updated last month
• Rurik / Noriben
  Noriben - Portable, Simple, Malware Analysis Sandbox
  ☆1,121Updated 11 months ago
• Cisco-Talos / pyrebox
  Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU
  ☆1,655Updated 9 months ago
• sleuthkit / sleuthkit
  The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…
  ☆2,632Updated this week
• eset / malware-ioc
  Indicators of Compromises (IOC) of our various investigations
  ☆1,655Updated this week
• GoSecure / malboxes
  Builds malware analysis Windows VMs so that you don't have to.
  ☆1,031Updated 3 years ago
• volatilityfoundation / volatility
  An advanced memory forensics framework
  ☆7,361Updated last year
• mozilla / mig
  Distributed & real time digital forensics at the speed of the cloud
  ☆1,206Updated 5 years ago
• tomchop / malcom
  Malcom - Malware Communications Analyzer
  ☆1,155Updated 6 years ago
• ForensicArtifacts / artifacts
  Digital Forensics artifact repository
  ☆1,062Updated 3 months ago
• tklengyel / drakvuf
  DRAKVUF Black-box Binary Analysis
  ☆1,064Updated this week
• crits / crits
  CRITs - Collaborative Research Into Threats
  ☆893Updated 5 years ago
• volatilityfoundation / community
  Volatility plugins developed and maintained by the community
  ☆342Updated 3 years ago
• JusticeRage / Manalyze
  A static analyzer for PE executables.
  ☆1,018Updated 10 months ago
• google / grr-doc
  Documentation for the GRR Rapid Reponse framework
  ☆301Updated 2 months ago
• volatilityfoundation / profiles
  Volatility profiles for Linux and Mac OS X
  ☆319Updated 2 years ago
• erocarrera / pefile
  pefile is a Python module to read and work with PE (Portable Executable) files
  ☆1,879Updated 2 months ago
• certsocietegenerale / fame
  FAME Automates Malware Evaluation
  ☆862Updated this week
• Neo23x0 / yarGen
  yarGen is a generator for YARA rules
  ☆1,558Updated 5 months ago
• KasperskyLab / klara
  Kaspersky's GReAT KLara
  ☆697Updated 3 months ago
• panda-re / panda
  Platform for Architecture-Neutral Dynamic Analysis
  ☆2,493Updated 2 weeks ago
• buffer / thug
  Python low-interaction honeyclient
  ☆994Updated this week
• google / timesketch
  Collaborative forensic timeline analysis
  ☆2,615Updated 2 weeks ago
• carmaa / inception
  Inception is a physical memory manipulation and hacking tool exploiting PCI-based DMA. The tool can attack over FireWire, Thunderbolt, Ex…
  ☆1,573Updated last year
• joxeankoret / pyew
  Official repository for Pyew.
  ☆383Updated 5 years ago