Alternatives and similar repositories for volatility3-symbols

Users that are interested in volatility3-symbols are comparing it to the libraries listed below

• p0dalirius / volatility2-profiles
  Memory mapping profiles for forensic analysis using volatility 2
  ☆51Updated 3 years ago
• Immersive-Labs-Sec / SliverC2-Forensics
  A collection of tools and detections for the Sliver C2 Frameworj
  ☆133Updated 2 years ago
• Wh04m1001 / CVE-2023-20178
  ☆90Updated 2 years ago
• p0dalirius / ldap2json
  The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.
  ☆140Updated last year
• breppo / Volatility-BitLocker
  Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…
  ☆53Updated 5 years ago
• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆223Updated 2 years ago
• Abyss-W4tcher / volatility2-profiles
  Collection of Volatility2 profiles, generated against Linux kernels.
  ☆54Updated last month
• Wh04m1001 / SysmonEoP
  ☆184Updated 2 years ago
• synacktiv / ntdissector
  ☆163Updated 5 months ago
• deepinstinct / NoFilter
  ☆302Updated last year
• spitfirerxf / vol3-plugins
  Collection of my volatility3 plugins
  ☆18Updated last year
• Malandrone / PowerDecode
  PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…
  ☆226Updated last year
• JPCERTCC / Windows-Symbol-Tables
  Windows symbol tables for Volatility 3
  ☆91Updated last year
• IncludeSecurity / c2-vulnerabilities
  PoCs of RCEs against open source C2 servers
  ☆88Updated last year
• almandin / ntdsdotsqlite
  A small utility to translate NTDS.dit files to SQLite format.
  ☆79Updated 2 years ago
• tijldeneut / dpapilab-ng
  DPAPILAB Next Gen, script collection
  ☆92Updated 3 years ago
• deepinstinct / ContainYourself
  A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.
  ☆318Updated 2 years ago
• ACE-Responder / RogueSliver
  A suite of tools to disrupt campaigns using the Sliver C2 framework.
  ☆281Updated 2 years ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆140Updated last month
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆184Updated 2 years ago
• ZephrFish / pyLDAPGui
  Python based GUI for browsing LDAP
  ☆175Updated last week
• airbus-cert / minusone
  Powershell Linter
  ☆86Updated last week
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181Updated 6 months ago
• passtheticket / CVE-2024-38200
  CVE-2024-38200 & CVE-2024-43609 - Microsoft Office NTLMv2 Disclosure Vulnerability
  ☆146Updated 11 months ago
• floesen / EventLogCrasher
  ☆192Updated last year
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆116Updated 2 years ago
• grahamhelton / USP
  Establishes persistence on a Linux system by creating a udev rule that triggers the execution of a specified payload (binary or script)
  ☆146Updated last year
• volexity / donut-decryptor
  Retrieve inner payloads from Donut samples
  ☆113Updated 2 weeks ago
• trustedsec / specula
  ☆227Updated 6 months ago
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆167Updated last year