malware-unicorn / MFTparserLinks
Encase Script to parse harddrive for MFT data
☆16Updated 8 years ago
Alternatives and similar repositories for MFTparser
Users that are interested in MFTparser are comparing it to the libraries listed below
Sorting:
- An automated collection and analysis of malware from my honeypots.☆25Updated 7 years ago
- Sentinel is a command line tool able to protect Windows 32 bit programs against exploits targeted by attackers or viruses. It can protect…☆71Updated 11 years ago
- Volatility Plugin to scan for shimmed processes in Windows☆10Updated 9 years ago
- Automated memory forensics analysis☆33Updated 5 years ago
- Discover potential timestamps within the Windows Registry☆18Updated 11 years ago
- Exploit Reliability Testing System☆34Updated 10 years ago
- Frontend for Codex Gigas☆21Updated 8 years ago
- ASERT shared scripts for reversing☆32Updated 7 years ago
- Utility to decompress Linux swsusp hibernation file.☆28Updated 3 years ago
- Format string exploit generation☆10Updated 9 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- A tool for enumerating the effective privileges of processes on an Android device.☆53Updated 11 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- Parses Java Cache IDX files☆39Updated 7 years ago
- ☆16Updated 10 years ago
- Material from our CANAPE workshop☆32Updated 6 years ago
- Portable utility to check if a machine has been infected by Shamoon2☆15Updated 8 years ago
- A Volatility plugin for finding sqlite database rows☆22Updated 5 years ago
- Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…☆36Updated 9 years ago
- My metasploit modules☆23Updated 9 years ago
- Resolves DLL API entrypoints for a process w/ remote query capabilities.☆55Updated 7 years ago
- Tool for automation of GUI-based testing.☆15Updated 10 years ago
- ☆26Updated 10 years ago
- Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…☆31Updated 6 years ago
- Break Apps with Frida workshop material☆42Updated 7 years ago
- CVE-2016-1287 vulnerability test☆16Updated 9 years ago
- This module is used to exploit startup script execution through Windows Group Policy settings when configured to run off of a remote SMB …☆22Updated 5 years ago
- Memory forensics of virtualization environments☆46Updated 10 years ago
- Purposely vulnerable ActiveX Control to teach about exploitation in a browser-based environment.☆70Updated 10 years ago
- Proof of concept code (which means poor code quality) for a proxy abusing unrestricted cross domain policies.☆23Updated 11 years ago