Alternatives and similar repositories for volatility-bitlocker:

Users that are interested in volatility-bitlocker are comparing it to the libraries listed below

• breppo / Volatility-BitLocker
  Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…
  ☆43Updated 5 years ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆91Updated 4 years ago
• MagnetForensics / Hibr2Bin
  Comae Hibernation File Decompressor
  ☆146Updated last year
• volatilityfoundation / community3
  Volatility3 plugins developed and maintained by the community
  ☆51Updated 2 years ago
• mandiant / win10_volatility
  An advanced memory forensics framework
  ☆94Updated 5 years ago
• cyb3rfox / MFTEntryCarver
  Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…
  ☆21Updated 5 years ago
• lemmou / RansomNoteFiles
  ☆23Updated 11 months ago
• ufrisk / MemProcFS-plugins
  ☆54Updated 5 months ago
• GDATAAdvancedAnalytics / winreg-tasks
  ☆18Updated 2 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• you0708 / lznt1
  Python implementation of LZNT1 compression/decompression
  ☆64Updated 5 years ago
• kevthehermit / volatility_plugins
  Volatility Plugins
  ☆61Updated last year
• dfirfpi / dpapilab
  Windows DPAPI laboratory
  ☆90Updated 7 years ago
• cube0x8 / ChromeRagamuffin
  Google Chrome internals analysis using Volatility
  ☆42Updated 2 years ago
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 4 years ago
• NTFSparse / ntfs_parse
  NTFS parser, plus linking capabilites between MFT LogFile and UsnJrnl
  ☆37Updated 8 years ago
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆23Updated 5 months ago
• faisalusuf / ThreatIntelligence
  Tracking APT IOCs
  ☆25Updated 4 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆38Updated last year
• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆83Updated 2 years ago
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆88Updated 2 months ago
• Paul-Tew / lifer
  Windows link file (shortcuts) examiner
  ☆68Updated 9 months ago
• EricZimmerman / WxTCmd
  ☆19Updated 2 months ago
• tccontre / KnowledgeBase
  Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
  ☆54Updated last month
• seth1002 / tracecorn_tina
  a modified version base on Tracecorn
  ☆20Updated 5 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆47Updated 4 years ago
• Neo23x0 / DLLRunner
  Smart DLL execution for malware analysis in sandbox systems
  ☆143Updated 10 years ago
• JPCERTCC / Windows-Symbol-Tables
  Windows symbol tables for Volatility 3
  ☆81Updated 8 months ago
• kevthehermit / volatility_symbols
  Volatility Symbol Generator for Linux Kernels
  ☆34Updated last year
• msuhanov / winmem_decompress
  Extract compressed memory pages from page-aligned data
  ☆44Updated 6 years ago