memoryforensics1 / Vol3xp
Volatility Explorer Suit
☆63Updated 2 years ago
Alternatives and similar repositories for Vol3xp:
Users that are interested in Vol3xp are comparing it to the libraries listed below
- volatility explorer☆91Updated 4 years ago
- shared samples from #dailyphish and/or #apt tweets☆37Updated 2 months ago
- ☆61Updated 2 years ago
- Windows symbol tables for Volatility 3☆81Updated 8 months ago
- Neton is a tool for getting information from Internet connected sandboxes☆92Updated 2 years ago
- A collection of tools and detections for the Sliver C2 Frameworj☆116Updated last year
- This repo will contain the core detection, only for Cobaltstrike's leaked versions. Non-leaked version detections wont be shared☆90Updated last year
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆159Updated 4 months ago
- ☆47Updated 2 years ago
- Critical Vulnerabilities in Trend Micro Deep Security Agent for Linux☆28Updated 3 years ago
- Learnings about windows Internals☆91Updated last year
- The code in this repository which function is to extract the shellcode from the maldoc.☆10Updated last year
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- ☆56Updated 3 months ago
- MacOS C2 Framework☆83Updated 3 years ago
- An exploit for CVE-2022-42475, a pre-authentication heap overflow in Fortinet networking products☆32Updated last year
- YaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.☆43Updated last year
- TeamServer.prop is an optional properties file used by the Cobalt Strike teamserver to customize the settings used to validate screenshot…☆63Updated 7 months ago
- A spin-off research project. Cobalt Strike x Notion collab 2022☆53Updated 2 years ago
- Windows Common Log File System Driver POC☆94Updated 3 years ago
- ☆18Updated 2 years ago
- Volatility, on Docker 🐳☆33Updated 8 months ago
- PoCs of RCEs against open source C2 servers☆80Updated 5 months ago
- Memory Scaner☆63Updated 2 years ago
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆205Updated last year
- Decrypt encrypted Fortienet FortiOS firmware images☆108Updated last year
- Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stag…☆87Updated last year
- CVE-2021-42342 RCE☆42Updated 3 years ago
- Proof-of-Concept for CVE-2024-21345☆71Updated 10 months ago
- ☆71Updated 3 years ago