mbrown1413 / SqliteFind
A Volatility plugin for finding sqlite database rows
☆22Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for SqliteFind
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆40Updated 5 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- Command-line Interface for Binar.ly☆37Updated 7 years ago
- Various scrips☆12Updated 2 years ago
- QEMU with rVMI extensions☆25Updated 7 years ago
- A Rekall interactive document for a Memory Analysis workshop/course.☆43Updated 7 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆35Updated 8 years ago
- Some dfir stuff☆31Updated 2 years ago
- ☆16Updated 9 years ago
- Carves EXEs from given data files, using intelligent carving based upon PE headers☆36Updated 7 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 4 years ago
- Volatility Plugins☆21Updated 9 years ago
- Tools☆13Updated last year
- A tool to generate yara signatures from function blocks☆19Updated 9 years ago
- misc scripts☆36Updated 6 years ago
- A collection of Volatility Framework plugins.☆26Updated 11 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 5 years ago
- vstruct based dissectors for various file/protocol formats☆15Updated 7 years ago
- Extract GUIDs from .NET assemblies☆21Updated 8 years ago
- onigiri - remote malware triage script☆24Updated 9 years ago
- Automation for VirusTotal☆31Updated 8 years ago
- ripPE - section extractor and profiler for PE file analysis☆31Updated 10 years ago
- threadmap plugin for Volatility Foundation☆27Updated 3 years ago
- ☆19Updated 6 years ago
- Analysis PE file or Shellcode☆48Updated 8 years ago
- POC for IAT Parsing Payloads☆47Updated 7 years ago
- RegRipper wrapper for simplified bulk parsing or registry hives☆9Updated 6 years ago
- Useful scripts, rules etc. for use with YARA☆27Updated 3 years ago
- Recurse through a registry, identifying values with large data -- a registry malware hunter☆44Updated 8 years ago