google / rekallLinks
Rekall Memory Forensic Framework
☆1,983Updated 5 years ago
Alternatives and similar repositories for rekall
Users that are interested in rekall are comparing it to the libraries listed below
Sorting:
- Binary analysis and management framework☆1,551Updated 2 years ago
- LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices…☆1,878Updated 2 months ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,196Updated 2 months ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆2,015Updated last month
- Super timeline all the things☆1,943Updated last week
- GRR Rapid Response: remote live forensics for incident response☆4,980Updated 4 months ago
- Builds malware analysis Windows VMs so that you don't have to.☆1,046Updated 4 years ago
- The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…☆2,900Updated 2 weeks ago
- Malcom - Malware Communications Analyzer☆1,164Updated 7 years ago
- A static analyzer for PE executables.☆1,085Updated last year
- The Python interface for YARA☆711Updated 4 months ago
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,677Updated last year
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,827Updated 3 years ago
- Python low-interaction honeyclient☆1,021Updated this week
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,736Updated last week
- Indicators of Compromises (IOC) of our various investigations☆1,862Updated this week
- yarGen is a generator for YARA rules☆1,726Updated 2 weeks ago
- Digital Forensics artifact repository☆1,166Updated last week
- CRITs - Collaborative Research Into Threats☆906Updated 6 years ago
- FAME Automates Malware Evaluation☆914Updated 2 weeks ago
- Laika BOSS: Object Scanning System☆749Updated 10 months ago
- Kaspersky's GReAT KLara☆716Updated last year
- DRAKVUF Black-box Binary Analysis☆1,176Updated 3 weeks ago
- PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.☆615Updated 3 years ago
- pefile is a Python module to read and work with PE (Portable Executable) files☆1,980Updated last year
- Repository of yara rules☆4,557Updated last year
- APTnotes data☆1,751Updated 10 months ago
- Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.☆509Updated last year
- ☆974Updated last month
- VirusTotal Wanna Be - Now with 100% more Hipster☆1,690Updated 2 years ago