Alternatives and similar repositories for volatility3-symbols

Users that are interested in volatility3-symbols are comparing it to the libraries listed below

• p0dalirius / volatility2-profiles
  Memory mapping profiles for forensic analysis using volatility 2
  ☆47Updated 2 years ago
• Wh04m1001 / CVE-2023-20178
  ☆92Updated last year
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆164Updated 11 months ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆116Updated last year
• Wh04m1001 / SysmonEoP
  ☆183Updated 2 years ago
• p0dalirius / microsoft-rpc-fuzzing-tools
  This repository contains a list of python scripts to work with Microsoft RPC for research purposes.
  ☆45Updated 4 months ago
• airbus-cert / minusone
  Powershell Linter
  ☆53Updated last month
• Wh04m1001 / GamingServiceEoP
  ☆147Updated last year
• sfewer-r7 / CVE-2023-34362
  CVE-2023-34362: MOVEit Transfer Unauthenticated RCE
  ☆64Updated last year
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆59Updated last year
• spitfirerxf / vol3-plugins
  Collection of my volatility3 plugins
  ☆18Updated 9 months ago
• pwnsauc3 / RWXfinder
  The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
  ☆103Updated last year
• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆212Updated 2 years ago
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆82Updated last year
• sec-consult / msiscan
  Scanning tool for identifying local privilege escalation issues in vulnerable MSI installers
  ☆121Updated 8 months ago
• nixpal / shellsilo
  SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…
  ☆131Updated 6 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆115Updated 2 months ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆62Updated 2 years ago
• naksyn / ProcessStomping
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆148Updated last year
• rad9800 / FileRenameJunctionsEDRDisable
  ☆155Updated 5 months ago
• IncludeSecurity / c2-vulnerabilities
  PoCs of RCEs against open source C2 servers
  ☆81Updated 8 months ago
• OmriBaso / WTSImpersonator
  WTSImpersonator utilizes WTSQueryUserToken to steal user tokens by abusing the RPC Named Pipe "\\pipe\LSM_API_service"
  ☆119Updated 11 months ago
• Immersive-Labs-Sec / SliverC2-Forensics
  A collection of tools and detections for the Sliver C2 Frameworj
  ☆126Updated 2 years ago
• SafeBreach-Labs / CortexVortex
  ☆78Updated last year
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆90Updated 11 months ago
• MatheuZSecurity / detect-lkm-rootkit-cheatsheet
  Cheat sheet to detect and remove linux kernel rootkit
  ☆61Updated 5 months ago
• naacbin / CovenantDecryptor
  ☆20Updated last year
• OmriBaso / BesoToken
  A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).
  ☆93Updated 2 years ago
• carsonchan12345 / CVE-2024-37726-MSI-Center-Local-Privilege-Escalation
  ☆36Updated 6 months ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆83Updated 3 years ago