Alternatives and similar repositories for lqs2mem

Users that are interested in lqs2mem are comparing it to the libraries listed below

• CrySyS / membrane
  Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
  ☆41Updated 8 years ago
• Cybereason / linux_plumber
  A python implementation of a grep friendly ftrace wrapper
  ☆80Updated 5 years ago
• Phoul / yara_rules
  yara rules for crypto detection
  ☆31Updated 11 years ago
• jbertman / pattern_tools
  Metasploit pattern generator in Python, modified to be used as a function
  ☆23Updated 10 years ago
• tklengyel / honeybrid
  Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…
  ☆31Updated 6 years ago
• juergh / lqs2mem.py
  Convert libvirt-QEMU-save (LQS) files to raw memory files
  ☆14Updated 6 years ago
• d3sre / Understanding_the_NDIS_6_stack
  Public documents about bachelor thesis "Reverse Engineering Analysis of the NDIS 6.* stack"
  ☆41Updated 8 years ago
• Mipu94 / BroIDS_Unicorn
  simple plugin to detect shellcode on Bro IDS with Unicorn
  ☆33Updated 8 years ago
• Th4nat0s / No_Sandboxes
  Test suite for bypassing Malware sandboxes.
  ☆39Updated 10 years ago
• dutchcoders / troje
  Troje is a honeypot built around lxc containers. It will run each connection with the service within a seperate lxc container.
  ☆44Updated 10 years ago
• vortessence / vortessence
  Automated memory forensics analysis
  ☆33Updated 5 years ago
• hatching / tracy
  tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
  ☆33Updated last year
• CERN-CERT / activity_klog
  Ccollection of Linux loadable kernel modules aimed to logs any user action
  ☆26Updated 6 years ago
• GitMirar / BinaryNinjaYaraPlugin
  Yara Plugin for Binary Ninja
  ☆13Updated 7 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 10 years ago
• elfmaster / ecfs_exec
  Be able to execute memory snapshots so they can start running where they left off.
  ☆35Updated 10 years ago
• noxdafox / vminspect
  Tools for inspecting disk images
  ☆25Updated 6 years ago
• fuhry / linux-memory-dumper
  Script that dumps running process memory from Linux systems using /proc.
  ☆79Updated 11 years ago
• eurecom-s3 / actaeon
  Memory forensics of virtualization environments
  ☆46Updated 10 years ago
• motazreda / MalwareFragmentationTool
  Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…
  ☆36Updated 9 years ago
• quarkslab / irma-ansible-old
  IRMA ansible
  ☆24Updated 8 years ago
• monnappa22 / linux_mem_diff_tool
  Script to perform Linux Memory Diff Analysis Using Volatility
  ☆24Updated 9 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• tillmannw / swffile
  swffile.py - SWF file parser module in Python
  ☆28Updated 9 years ago
• TakahiroHaruyama / openioc_scan
  openioc_scan Volatility Framework plugin
  ☆43Updated 9 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆37Updated 8 years ago
• jaimeblasco / AlienvaultLabs
  Alienvault Labs Projects Random Stuff
  ☆79Updated 11 years ago
• taviso / iknowthis
  iknowthis Linux SystemCall Fuzzer
  ☆20Updated 6 years ago