Alternatives and similar repositories for volatility3-symbols:

Users that are interested in volatility3-symbols are comparing it to the libraries listed below

• p0dalirius / volatility2-profiles
  Memory mapping profiles for forensic analysis using volatility 2
  ☆47Updated 2 years ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆162Updated 9 months ago
• sensepost / mydumbedr
  ☆114Updated last year
• Wh04m1001 / CVE-2023-20178
  ☆92Updated last year
• OmriBaso / BesoToken
  A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).
  ☆93Updated 2 years ago
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆59Updated last year
• synacktiv / ntdissector
  ☆139Updated 7 months ago
• Wh04m1001 / SysmonEoP
  ☆182Updated 2 years ago
• Wh04m1001 / GamingServiceEoP
  ☆147Updated last year
• rad9800 / FileRenameJunctionsEDRDisable
  ☆150Updated 3 months ago
• p0dalirius / microsoft-rpc-fuzzing-tools
  This repository contains a list of python scripts to work with Microsoft RPC for research purposes.
  ☆45Updated last month
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆99Updated last year
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆89Updated 10 months ago
• Abyss-W4tcher / volatility2-profiles
  Collection of Volatility2 profiles, generated against Linux kernels.
  ☆36Updated 3 weeks ago
• airbus-cert / minusone
  Powershell Linter
  ☆50Updated last week
• Kudaes / Bin-Finder
  Detect EDR's exceptions by inspecting processes' loaded modules
  ☆130Updated last year
• RedTeamOperations / Journey-to-McAfee
  ☆112Updated 2 years ago
• SafeBreach-Labs / CortexVortex
  ☆75Updated 11 months ago
• Maldev-Academy / DRMBinViaOrdinalImports
  Create Anti-Copy DRM Malware
  ☆54Updated 7 months ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆147Updated last year
• ariary / DogWalk-rce-poc
  🐾Dogwalk PoC (using diagcab file to obtain RCE on windows)
  ☆80Updated 2 years ago
• Immersive-Labs-Sec / SliverC2-Forensics
  A collection of tools and detections for the Sliver C2 Frameworj
  ☆118Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆160Updated 3 months ago
• zblurx / impersonate-rs
  Rusty Impersonate
  ☆95Updated last year
• alfarom256 / LogMeInPoCHandleDup
  ☆63Updated last year
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆85Updated last year
• cod3nym / Deobfuscar
  A simple commandline application to automatically decrypt strings from Obfuscator protected binaries
  ☆39Updated 9 months ago
• Wh04m1001 / CVE-2023-29343
  ☆162Updated last year
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆78Updated last year
• codewhitesec / SysmonEnte
  ☆72Updated 2 years ago