memoryforensics1 / VolExpLinks
volatility explorer
☆92Updated 4 years ago
Alternatives and similar repositories for VolExp
Users that are interested in VolExp are comparing it to the libraries listed below
Sorting:
- QuasarRAT analysis tools and research report☆27Updated last year
- Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff☆57Updated last month
- Unpacking and decryption tools for the Emotet malware☆45Updated 3 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆43Updated 4 years ago
- A small utility to deal with malware embedded hashes.☆52Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Lazarus analysis tools and research report☆57Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- ☆24Updated last year
- ProcDot Malware Sandbox☆25Updated 3 months ago
- ☆61Updated last year
- AdHoc solutions☆48Updated 2 years ago
- Volatility Explorer Suit☆65Updated 2 years ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 3 years ago
- YARI is an interactive debugger for YARA Language.☆89Updated last month
- A small util to brute-force prefetch hashes☆78Updated 3 years ago
- Volatility3 plugins developed and maintained by the community☆59Updated 2 years ago
- Dumping credentials through windbg and pykd☆41Updated 2 years ago
- ☆22Updated last year
- ☆36Updated 2 years ago
- Radare2 Metadata Extraction to Elasticsearch☆23Updated last year
- Userland API monitor for threat hunting☆58Updated 5 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- Triaging Windows event logs based on SANS Poster☆41Updated last month
- ☆23Updated 2 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆66Updated 3 years ago
- Imphash-like calculation on Golang binaries☆49Updated 3 years ago
- VBScript & VBA source-to-source deobfuscator with partial-evaluation☆80Updated last year
- ☆23Updated 5 years ago
- Windows symbol tables for Volatility 3☆91Updated last year