p0dalirius / volatility3-symbols

Related projects ⓘ

Alternatives and complementary repositories for volatility3-symbols

• p0dalirius / volatility2-profiles
  Memory mapping profiles for forensic analysis using volatility 2
  ☆45Updated 2 years ago
• Wh04m1001 / CVE-2023-20178
  ☆91Updated last year
• Immersive-Labs-Sec / SliverC2-Forensics
  A collection of tools and detections for the Sliver C2 Frameworj
  ☆109Updated last year
• Wh04m1001 / SysmonEoP
  ☆181Updated last year
• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆194Updated last year
• airbus-cert / minusone
  Powershell Linter
  ☆46Updated last month
• 0vercl0k / paracosme
  Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stag…
  ☆86Updated last year
• JPCERTCC / Windows-Symbol-Tables
  Windows symbol tables for Volatility 3
  ☆73Updated 4 months ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆113Updated last year
• p0dalirius / ldap2json
  The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.
  ☆120Updated 3 weeks ago
• binderlabs / DirCreate2System
  Weaponizing to get NT SYSTEM for Privileged Directory Creation Bugs with Windows Error Reporting
  ☆359Updated last year
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆161Updated 5 months ago
• Diego-AltF4 / GLUFS
  GLUFS allows you to automate the tedious process of finding leaks using format string vulnerabilities.
  ☆25Updated 2 years ago
• vvelitkn / Evasion-Escaper
  Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…
  ☆99Updated last year
• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆111Updated 2 months ago
• RedTeamOperations / Journey-to-McAfee
  ☆112Updated 2 years ago
• tijldeneut / dpapilab-ng
  DPAPILAB Next Gen, script collection
  ☆74Updated 2 years ago
• Bw3ll / ShellWasp
  ShellWasp is a tool to help build shellcode that utilizes Windows syscalls, while overcoming the portability problem associated with Wind…
  ☆160Updated last year
• Abyss-W4tcher / volatility2-profiles
  Collection of Volatility2 profiles, generated against Linux kernels.
  ☆30Updated this week
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆73Updated 3 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆110Updated 4 months ago
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆176Updated last year
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆317Updated 4 months ago
• almandin / ntdsdotsqlite
  A small utility to translate NTDS.dit files to SQLite format.
  ☆62Updated last year
• gyaansastra / CVE-2023-21716
  A vulnerability within Microsoft Office's wwlib allows attackers to achieve remote code execution with the privileges of the victim that …
  ☆59Updated last year
• FuzzySecurity / BHUSA-2023
  ☆103Updated 4 months ago
• p0dalirius / objectwalker
  A python module to explore the object tree to extract paths to interesting objects in memory.
  ☆79Updated 8 months ago
• OmriBaso / BesoToken
  A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).
  ☆93Updated last year