Alternatives and similar repositories for lqs2mem

Users that are interested in lqs2mem are comparing it to the libraries listed below

• Cybereason / linux_plumber
  A python implementation of a grep friendly ftrace wrapper
  ☆80Updated 6 years ago
• Phoul / yara_rules
  yara rules for crypto detection
  ☆31Updated 11 years ago
• CrySyS / membrane
  Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
  ☆41Updated 9 years ago
• Mipu94 / BroIDS_Unicorn
  simple plugin to detect shellcode on Bro IDS with Unicorn
  ☆33Updated 8 years ago
• eurecom-s3 / actaeon
  Memory forensics of virtualization environments
  ☆48Updated 11 years ago
• tklengyel / honeybrid
  Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…
  ☆31Updated 6 years ago
• open-nsm / dockoo
  Malware analysis using Docker project
  ☆25Updated 9 years ago
• scudette / memory-analysis
  A Rekall interactive document for a Memory Analysis workshop/course.
  ☆43Updated 8 years ago
• fuhry / linux-memory-dumper
  Script that dumps running process memory from Linux systems using /proc.
  ☆79Updated 12 years ago
• MagnetForensics / swsusp2bin
  Utility to decompress Linux swsusp hibernation file.
  ☆28Updated 4 years ago
• rodionovd / cuckoo-osx-analyzer
  An OS X analyzer for Cuckoo Sandbox project
  ☆57Updated 10 years ago
• monnappa22 / linux_mem_diff_tool
  Script to perform Linux Memory Diff Analysis Using Volatility
  ☆24Updated 10 years ago
• mothran / unicorn-decoder
  Simple shellcode decoder using unicorn-engine
  ☆99Updated 10 years ago
• ice799 / injectso64
  Stealth's 64bit injectso port
  ☆73Updated 15 years ago
• jduck / challack
  Proof-of-concept exploit code for CVE-2016-5696
  ☆74Updated 9 years ago
• jjo-sec / volatility_plugins
  Volatility Plugins
  ☆22Updated 10 years ago
• ezrac / POLAR
  POLAR
  ☆74Updated 6 years ago
• rrbranco / grsecurity-pax-history
  GrSecurity and PaX Patches Before End of Public Release
  ☆65Updated 7 years ago
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆98Updated 11 years ago
• matonis / ripPE
  ripPE - section extractor and profiler for PE file analysis
  ☆33Updated 11 years ago
• HexHive / HexPADS
  HexPADS, a host-based, Performance-counter-based Attack Detection System
  ☆41Updated 3 years ago
• s7ephen / pfi
  PFI (Port Forwarding Interceptor)
  ☆46Updated 16 years ago
• sghctoma / multipass
  A small wriiteup and a PoC tool about how to use SO_REUSADDR for firewall evasion
  ☆27Updated 10 years ago
• jaimeblasco / AlienvaultLabs
  Alienvault Labs Projects Random Stuff
  ☆79Updated 12 years ago
• r3comp1le / VT-Hunter
  Manage VT Alerts
  ☆62Updated 9 years ago
• mandiant / synfulknock
  ☆49Updated 10 years ago
• intezer / MemoryPatchDetector
  Detects code differentials between executables in disk and the corresponding processes/modules in memory
  ☆115Updated 5 years ago
• quarkslab / irma-ansible-old
  IRMA ansible
  ☆24Updated 9 years ago
• Th4nat0s / No_Sandboxes
  Test suite for bypassing Malware sandboxes.
  ☆39Updated 11 years ago
• elfmaster / ecfs_exec
  Be able to execute memory snapshots so they can start running where they left off.
  ☆36Updated 10 years ago