mandiant / Volatility-Plugins
☆82Updated 8 years ago
Alternatives and similar repositories for Volatility-Plugins:
Users that are interested in Volatility-Plugins are comparing it to the libraries listed below
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆114Updated 7 months ago
- Lazy Office Analyzer☆119Updated 7 years ago
- PE Import Hash Generator☆75Updated 7 years ago
- Python IOC Editor☆63Updated 9 years ago
- Reconstruct process trees from event logs☆146Updated 4 years ago
- VirusTotal Intelligence Notification Puller☆28Updated 8 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆81Updated 7 years ago
- Page File analysis tools.☆124Updated 9 years ago
- ☆36Updated 7 years ago
- A dumb set of scripts for building a cuckoo rig☆61Updated 7 years ago
- Some IR notes☆73Updated 8 years ago
- Modified edition of cuckoo community modules☆32Updated 5 years ago
- Some dfir stuff☆31Updated 3 years ago
- Process HTTP Pcaps With YARA☆101Updated 11 years ago
- Autoruns plugin for the Volatility framework☆118Updated 5 years ago
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- My Yara Rules Collection☆52Updated 8 years ago
- Extract common Windows artifacts from source images and VSCs☆66Updated 3 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆77Updated 4 years ago
- AuditParser☆58Updated 11 years ago
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆195Updated 7 years ago
- Modified edition of cuckoo community modules☆50Updated 7 years ago
- Recurse through a registry, identifying values with large data -- a registry malware hunter☆44Updated 8 years ago
- Yara rules for malware families seen as part of targeted threats project☆133Updated 8 years ago
- general purpose and malware specific analysis tools☆101Updated 9 years ago
- Scripts for dealing with various ek's☆69Updated 7 years ago