superponible / volatility-plugins

Related projects ⓘ

Alternatives and complementary repositories for volatility-plugins

• ANSSI-FR / bmc-tools
  RDP Bitmap Cache parser
  ☆479Updated 11 months ago
• DidierStevens / Beta
  Beta versions of my software
  ☆245Updated last year
• volatilityfoundation / community
  Volatility plugins developed and maintained by the community
  ☆342Updated 3 years ago
• volatilityfoundation / profiles
  Volatility profiles for Linux and Mac OS X
  ☆318Updated 2 years ago
• mandiant / win10_volatility
  An advanced memory forensics framework
  ☆92Updated 5 years ago
• williballenthin / EVTXtract
  EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
  ☆189Updated 4 years ago
• mandiant / Vulnerability-Disclosures
  ☆192Updated last month
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆131Updated 2 years ago
• Grazfather / PracticalMalwareLabs
  Keep track of the labs from the book "Practical Malware Analysis"
  ☆167Updated 5 years ago
• kevthehermit / volatility_plugins
  Volatility Plugins
  ☆62Updated last year
• tomchop / volatility-autoruns
  Autoruns plugin for the Volatility framework
  ☆118Updated 5 years ago
• msuhanov / dfir_ntfs
  An NTFS/FAT parser for digital forensics & incident response
  ☆191Updated 2 weeks ago
• davidpany / WMI_Forensics
  ☆294Updated 4 years ago
• f0wl / MalwareLab_VM-Setup
  Setup scripts for my Malware Analysis VMs
  ☆245Updated 2 years ago
• R3MRUM / PSDecode
  PowerShell script for deobfuscating encoded PowerShell scripts
  ☆417Updated 3 years ago
• Neo23x0 / DLLRunner
  Smart DLL execution for malware analysis in sandbox systems
  ☆141Updated 9 years ago
• DissectMalware / XLMMacroDeobfuscator
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆573Updated 6 months ago
• hiddenillusion / AnalyzePE
  Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.
  ☆204Updated 10 years ago
• abhisek / reverse-engineering-and-malware-analysis
  Course content and slides from my ancient training on Reverse Engineering & Malware Analysis
  ☆142Updated 4 years ago
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆203Updated 3 years ago
• buffer / libemu
  x86 emulation and shellcode detection
  ☆148Updated 7 months ago
• Cybereason / siofra
  ☆474Updated 7 years ago
• BSI-Bund / RdpCacheStitcher
  RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
  ☆241Updated last year
• carlospolop / autoVolatility
  Run several volatility plugins at the same time
  ☆108Updated 2 years ago
• naivenom / exploiting
  Exploiting challenges in Linux and Windows
  ☆121Updated 4 years ago
• mkorman90 / VolatilityBot
  VolatilityBot – An automated memory analyzer for malware samples and memory dumps
  ☆263Updated 3 years ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆90Updated 4 years ago
• WithSecureLabs / snake
  snake - a malware storage zoo
  ☆217Updated last year
• corelan / windbglib
  Public repository for windbglib, a wrapper around pykd.pyd (for Windbg), used by mona.py
  ☆323Updated 2 years ago
• atxsinn3r / VulnCases
  Vulnerability examples.
  ☆399Updated 6 months ago