tribalchicken / volatility-bitlockerLinks
Volatility plugin to extract BitLocker Full Volume Encryption Keys (FVEK)
☆66Updated 3 years ago
Alternatives and similar repositories for volatility-bitlocker
Users that are interested in volatility-bitlocker are comparing it to the libraries listed below
Sorting:
- Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…☆50Updated 5 years ago
- volatility explorer☆90Updated 4 years ago
- Comae Hibernation File Decompressor☆149Updated 2 years ago
- An advanced memory forensics framework☆93Updated 5 years ago
- Volatility3 plugins developed and maintained by the community☆57Updated 2 years ago
- Windows link file (shortcuts) examiner☆68Updated 11 months ago
- CLI tool to analyze PE files☆88Updated 8 months ago
- Set of tools to analyze Tinynuke samples☆15Updated 3 years ago
- Volatility Symbol Generator for Linux Kernels☆35Updated last year
- ☆71Updated last year
- FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis☆161Updated 5 months ago
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆51Updated 6 years ago
- ☆24Updated last year
- Trace ScriptBlock execution for powershell v2☆40Updated 5 years ago
- Google Chrome internals analysis using Volatility☆42Updated 2 years ago
- TA505 unpacker Python 2.7☆47Updated 4 years ago
- A tool for detecting VBA stomping.☆100Updated 2 years ago
- YARI is an interactive debugger for YARA Language.☆87Updated 4 months ago
- ☆54Updated 7 months ago
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆65Updated 3 years ago
- An automated collection and analysis of malware from my honeypots.☆25Updated 7 years ago
- Fork of aeskeyfind that knows more formats of AES key schedule☆65Updated 8 years ago
- XOR Key Extractor☆50Updated 9 months ago
- The Damn Vulnerable Router Firmware Project☆30Updated 7 years ago
- Psinfo is a Volatility plugin which collects the process related information from the VAD (Virtual Address Descriptor) and PEB (Process E…☆36Updated 8 years ago
- Standardized Malware Analysis Tool☆52Updated 4 years ago
- Imphash-like calculation on Golang binaries☆49Updated 2 years ago
- A tool for de-obfuscating PowerShell scripts☆68Updated 6 years ago
- Automatically exported from code.google.com/p/mac-osx-forensics☆28Updated 9 years ago
- Steezy - Ghetto Yara Generation☆15Updated 2 years ago