Alternatives and similar repositories for volatility-plugins:

Users that are interested in volatility-plugins are comparing it to the libraries listed below

• volatilityfoundation / community
  Volatility plugins developed and maintained by the community
  ☆353Updated 3 years ago
• ANSSI-FR / bmc-tools
  RDP Bitmap Cache parser
  ☆496Updated last week
• DidierStevens / Beta
  Beta versions of my software
  ☆248Updated last year
• mandiant / win10_volatility
  An advanced memory forensics framework
  ☆93Updated 5 years ago
• volatilityfoundation / profiles
  Volatility profiles for Linux and Mac OS X
  ☆320Updated 2 years ago
• davidpany / WMI_Forensics
  ☆297Updated 4 years ago
• tomchop / volatility-autoruns
  Autoruns plugin for the Volatility framework
  ☆119Updated 5 years ago
• ashemery / CuckooVM
  Cuckoo running in a nested hypervisor
  ☆128Updated 4 years ago
• williballenthin / EVTXtract
  EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
  ☆192Updated 4 years ago
• OALabs / BlobRunner
  Quickly debug shellcode extracted during malware analysis
  ☆577Updated last year
• hiddenillusion / AnalyzePE
  Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.
  ☆205Updated 11 years ago
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆131Updated 2 years ago
• kevthehermit / volatility_plugins
  Volatility Plugins
  ☆62Updated last year
• gleeda / memtriage
  Allows you to quickly query a Windows machine for RAM artifacts
  ☆218Updated 4 years ago
• R3MRUM / PSDecode
  PowerShell script for deobfuscating encoded PowerShell scripts
  ☆423Updated 3 years ago
• f0wl / MalwareLab_VM-Setup
  Setup scripts for my Malware Analysis VMs
  ☆250Updated 2 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆206Updated last year
• carlospolop / autoVolatility
  Run several volatility plugins at the same time
  ☆110Updated 2 years ago
• JPCERTCC / Windows-Symbol-Tables
  Windows symbol tables for Volatility 3
  ☆81Updated 6 months ago
• dfrws / dfrws2018-challenge
  The DFRWS 2018 challenge (extended into 2019) is the second in a series of challenges dealing with Internet of Things (IoT). IoT is defin…
  ☆57Updated 3 years ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆91Updated 4 years ago
• silence-is-best / c2db
  c2 traffic
  ☆189Updated last year
• PoorBillionaire / Windows-Prefetch-Parser
  Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files
  ☆115Updated 8 months ago
• EricZimmerman / AmcacheParser
  Parses amcache.hve files, but with a twist!
  ☆126Updated 2 weeks ago
• msuhanov / dfir_ntfs
  An NTFS/FAT parser for digital forensics & incident response
  ☆198Updated 2 months ago
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆205Updated 3 years ago
• volatilityfoundation / community3
  Volatility3 plugins developed and maintained by the community
  ☆50Updated last year
• mkorman90 / VolatilityBot
  VolatilityBot – An automated memory analyzer for malware samples and memory dumps
  ☆264Updated 3 years ago
• JPCERTCC / aa-tools
  Artifact analysis tools by JPCERT/CC Analysis Center
  ☆457Updated 6 months ago
• Abyss-W4tcher / volatility3-symbols
  Collection of Linux and macOS Volatility3 Intermediate Symbol Files (ISF), suitable for memory analysis 🔍
  ☆90Updated 2 weeks ago