Volatility3 Linux profiles
☆76Dec 8, 2025Updated 2 months ago
Alternatives and similar repositories for vol3-linux-profiles
Users that are interested in vol3-linux-profiles are comparing it to the libraries listed below
Sorting:
- Collection of Volatility2 profiles, generated against Linux kernels.☆54Oct 30, 2025Updated 4 months ago
- A suite of Volatility 3 plugins for memory forensics of Docker containers☆18Jan 10, 2024Updated 2 years ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆33Mar 9, 2022Updated 3 years ago
- Volatility Symbol Generator for Linux Kernels☆37Nov 15, 2023Updated 2 years ago
- Volatility, on Docker 🐳☆41Nov 20, 2025Updated 3 months ago
- Windows symbol tables for Volatility 3☆93Jul 11, 2024Updated last year
- A simplified pwntools for SageMath.☆11Dec 23, 2025Updated 2 months ago
- ☆24Mar 12, 2025Updated 11 months ago
- Generate Volatility3 profiles from BTF.☆31Dec 21, 2024Updated last year
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 8 months ago
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆10Jul 15, 2023Updated 2 years ago
- This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.☆21Sep 30, 2022Updated 3 years ago
- Memory acquisition for Linux that makes sense.☆220Nov 21, 2023Updated 2 years ago
- Volatility3 plugins developed and maintained by the community☆63Mar 19, 2023Updated 2 years ago
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated last year
- Volatility Explorer Suit☆67Jan 3, 2023Updated 3 years ago
- Automatic, fast parsing of browser artifacts☆17Jan 4, 2025Updated last year
- DFIRLab / Plateforme d'investigation numérique☆15Jul 6, 2021Updated 4 years ago
- ☆18Jan 18, 2022Updated 4 years ago
- Forensic Imaging quickstarts!☆13Aug 12, 2022Updated 3 years ago
- ☆12Jun 3, 2022Updated 3 years ago
- ☆24Apr 22, 2025Updated 10 months ago
- Collection of Linux and macOS Volatility3 Intermediate Symbol Files (ISF), suitable for memory analysis 🔍☆269Jan 20, 2026Updated last month
- USN Journal full path builder☆66Sep 16, 2024Updated last year
- Incident Response Report Using GitHub-Sphinx☆20Oct 28, 2019Updated 6 years ago
- Vault of Windows Registry forensic artifacts☆28Nov 12, 2025Updated 3 months ago
- StickyParser - Sticky Notes Forensic. A Windows Sticky Notes Praser (snt and plum.sqlite supported). Additional Feature: SQLite Recovery …☆20Jul 18, 2023Updated 2 years ago
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- Windows Forensics Environment Builder☆180Dec 5, 2025Updated 3 months ago
- 专为取证比赛设计的Android-Data数据库分析工具;快速解析手机镜像数据库文件,精准提取证据☆35Nov 5, 2025Updated 4 months ago
- Windows Forensics Salt States☆21Feb 23, 2026Updated last week
- Wireshark MCP 是一个基于 Model Context Protocol (MCP) 的服务器,允许 AI 助手通过 tshark 命令行工具进行交互。该工具提供了丰富的网络数据分析功能,支持实时抓包和离线分析。☆34Feb 4, 2026Updated last month
- ctf awd比赛快速hook java题,提供一键流量转发,无痛修复☆56Mar 17, 2025Updated 11 months ago
- ReWrite of AChoir in Go for Cross Platform forensic artifact collection and processing☆41Updated this week
- Copy-PhotoRecFilesbyExtension copies all files from the PhotoRec folders to new folders named by file extension.☆20Mar 31, 2022Updated 3 years ago
- The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.☆52Apr 22, 2025Updated 10 months ago
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 3 years ago
- Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…☆18Sep 7, 2023Updated 2 years ago
- Script to process PDF files☆21May 23, 2025Updated 9 months ago