Alternatives and similar repositories for VolExp

Users that are interested in VolExp are comparing it to the libraries listed below

• JPCERTCC / QuasarRAT-Analysis
  QuasarRAT analysis tools and research report
  ☆27Updated last year
• DidierStevens / AdHoc
  AdHoc solutions
  ☆48Updated 2 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• JPCERTCC / Lazarus-research
  Lazarus analysis tools and research report
  ☆56Updated last year
• tccontre / KnowledgeBase
  Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
  ☆57Updated this week
• harelsegev / prefetch-hash-cracker
  A small util to brute-force prefetch hashes
  ☆78Updated 3 years ago
• memprocfshunt / MemProcFSHunter
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆44Updated 4 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆39Updated 2 years ago
• lemmou / RansomNoteFiles
  ☆24Updated last year
• deepinstinct / DeMotet
  Unpacking and decryption tools for the Emotet malware
  ☆45Updated 3 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆25Updated 3 years ago
• n1ght-w0lf / Uchihash
  A small utility to deal with malware embedded hashes.
  ☆52Updated last year
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• stairwell-inc / cobalt-strike-stager-parser
  ☆36Updated 2 years ago
• memoryforensics1 / Vol3xp
  Volatility Explorer Suit
  ☆66Updated 2 years ago
• threatexpress / procdot_sandbox
  ProcDot Malware Sandbox
  ☆24Updated last month
• SIFalcon / Detection
  ☆22Updated 2 years ago
• mandiant / goauditparser
  ☆46Updated 2 years ago
• 0xHasanM / Autopsy-Registry-Explorer
  Autopsy Module to analyze Registry Hives
  ☆15Updated 3 years ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆68Updated 3 years ago
• snemes / malware-analysis
  ☆23Updated 5 years ago
• mandiant / win10_volatility
  An advanced memory forensics framework
  ☆96Updated 5 years ago
• ufrisk / MemProcFS-plugins
  ☆57Updated 11 months ago
• michelcrypt4d4mus / yaralyzer
  Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.
  ☆137Updated last week
• NorthwaveSecurity / lilo-pulse-secure-decrypt
  LILO based Pulse Secure appliance disk image decryptor
  ☆13Updated last year
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆80Updated last year
• volatilityfoundation / community3
  Volatility3 plugins developed and maintained by the community
  ☆59Updated 2 years ago
• DissectMalware / MDIExtractor
  ☆15Updated 3 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆33Updated 3 years ago