kevthehermit/volatility_plugins external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

kevthehermit/volatility_plugins

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kevthehermit/volatility_plugins)

Close

kevthehermit / volatility_pluginsView on GitHubMore

• External links
• Readme badge

Volatility Plugins

☆64Jul 22, 2023Updated 2 years ago

Alternatives and similar repositories for volatility_plugins

Users that are interested in volatility_plugins are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• superponible / volatility-plugins

  View on GitHub
  Plugins I've written for Volatility
  ☆217Dec 1, 2023Updated 2 years ago
• forensicxlab / volatility3_plugins

  View on GitHub
  ☆25Jul 23, 2024Updated last year
• bgrundy / cheatsheets-forensic

  View on GitHub
  Forensic cheatsheets for use with cheat
  ☆15Dec 2, 2021Updated 4 years ago
• ydkhatri / jarp

  View on GitHub
  Just Another broken Registry Parser (JARP)
  ☆16May 23, 2024Updated 2 years ago
• memoryforensics1 / VolExp

  View on GitHub
  volatility explorer
  ☆94Nov 16, 2020Updated 5 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• spitfirerxf / vol3-plugins

  View on GitHub
  Collection of my volatility3 plugins
  ☆19Sep 6, 2024Updated last year
• Johnng007 / Anteater

  View on GitHub
  Anteater is Reconnaissance tool for discovering interesting files and folders in a web application that most likely has been misconfigure…
  ☆14Jun 12, 2024Updated 2 years ago
• memoryforensics1 / Vol3xp

  View on GitHub
  Volatility Explorer Suit
  ☆70Jan 3, 2023Updated 3 years ago
• mkorman90 / VolatilityBot

  View on GitHub
  VolatilityBot – An automated memory analyzer for malware samples and memory dumps
  ☆268Jun 15, 2021Updated 5 years ago
• TazWake / volatility-plugins

  View on GitHub
  Learning volatility plugins.
  ☆19Feb 16, 2021Updated 5 years ago
• bluecapesecurity / drivefs_forensic_extractor

  View on GitHub
  Forensic tool for extracting and analyzing Google DriveFS cached files and metadata.
  ☆20May 9, 2025Updated last year
• Intrinsec / mplog_parser

  View on GitHub
  This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.
  ☆22Sep 30, 2022Updated 3 years ago
• dhondta / AppmemDumper

  View on GitHub
  Forensics triage tool relying on Volatility and Foremost
  ☆25Dec 3, 2023Updated 2 years ago
• JPCERTCC / Windows-Symbol-Tables

  View on GitHub
  Windows symbol tables for Volatility 3
  ☆95Jul 11, 2024Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• LincolnLandForensics / HodgePodge

  View on GitHub
  /ˈhäjˌpäj/ "a confused mixture."
  ☆15Jun 1, 2026Updated 2 weeks ago
• vallejocc / Malware-Analysis-scripts

  View on GitHub
  Scripts targeting specific families
  ☆13Jul 3, 2017Updated 8 years ago
• msuiche / malcheck

  View on GitHub
  Portable utility to check if a machine has been infected by Shamoon2
  ☆15Jan 13, 2017Updated 9 years ago
• dwmetz / detonaRE

  View on GitHub
  Capture. Detonate. Collect
  ☆14Sep 20, 2024Updated last year
• CyberCX-DFIR / usnjrnl_rewind

  View on GitHub
  USN Journal full path builder
  ☆69Apr 16, 2026Updated last month
• BSI-Bund / RdpCacheStitcher

  View on GitHub
  RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
  ☆327Sep 3, 2023Updated 2 years ago
• Dump-GUY / Invoke-DetectItEasy

  View on GitHub
  Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.
  ☆30Feb 15, 2022Updated 4 years ago
• 043a7e / airdropmsisdn

  View on GitHub
  Attempts to reverse a given partial hash to a phone number (or email) given the area code. Written for python3.
  ☆21Oct 25, 2022Updated 3 years ago
• RegSeek / regseek.github.io

  View on GitHub
  Vault of Windows Registry forensic artifacts
  ☆30Nov 12, 2025Updated 7 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• tsale / TA_tooling

  View on GitHub
  ☆10Dec 24, 2022Updated 3 years ago
• MarkBaggett / ese-analyst

  View on GitHub
  This is a set of tools for doing forensics analysis on Microsoft ESE databases.
  ☆130Jan 31, 2022Updated 4 years ago
• AndrewRathbun / EventTranscript.db-Research

  View on GitHub
  A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.
  ☆43Jul 18, 2022Updated 3 years ago
• ARBCTF / resources

  View on GitHub
  Useful books, links, blogs, etc.
  ☆14Jan 29, 2018Updated 8 years ago
• kacos2000 / WinEDB

  View on GitHub
  Windows.EDB Browser
  ☆62Mar 6, 2023Updated 3 years ago
• WesSec / VelociDeploy-o-Matic

  View on GitHub
  Scripts to for ready-to-use Velociraptor instance deployment in Azure
  ☆14Jun 27, 2023Updated 2 years ago
• stairwell-inc / cobalt-strike-stager-parser

  View on GitHub
  ☆36Jan 11, 2023Updated 3 years ago
• Whee30 / Case-Management-script

  View on GitHub
  A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…
  ☆12May 6, 2026Updated last month
• gmagklaras / POFR

  View on GitHub
  Penguin OS Forensic (or Flight) Recorder
  ☆41Mar 27, 2026Updated 2 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• volatilityfoundation / community

  View on GitHub
  Volatility plugins developed and maintained by the community
  ☆375Apr 5, 2021Updated 5 years ago
• MISP / intelligence-icons

  View on GitHub
  intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; inclu…
  ☆41Mar 17, 2019Updated 7 years ago
• tomchop / volatility-autoruns

  View on GitHub
  Autoruns plugin for the Volatility framework
  ☆123Jul 18, 2019Updated 6 years ago
• memprocfshunt / MemProcFSHunter

  View on GitHub
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆45May 12, 2021Updated 5 years ago
• StrangerealIntel / DeltaFlare

  View on GitHub
  ☆12Jun 29, 2021Updated 4 years ago
• stuxnet999 / FileSigExtractor

  View on GitHub
  FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…
  ☆10Jul 15, 2023Updated 2 years ago
• abrignoni / WLEAPP

  View on GitHub
  WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.
  ☆35Nov 16, 2023Updated 2 years ago