tribalchicken / volatility-bitlocker

Related projects: ⓘ

• breppo / Volatility-BitLocker
  Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…
  ☆33Updated 4 years ago
• MagnetForensics / Hibr2Bin
  Comae Hibernation File Decompressor
  ☆141Updated last year
• memoryforensics1 / VolExp
  volatility explorer
  ☆90Updated 3 years ago
• mandiant / win10_volatility
  An advanced memory forensics framework
  ☆92Updated 4 years ago
• Paul-Tew / lifer
  Windows link file (shortcuts) examiner
  ☆65Updated 3 months ago
• ufrisk / MemProcFS-plugins
  ☆53Updated 3 years ago
• Heat-Miser / tinynuke-toolset
  Set of tools to analyze Tinynuke samples
  ☆15Updated 2 years ago
• Big5-sec / SourceFu
  hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…
  ☆40Updated 5 years ago
• ernw / quarantine-formats
  Documentation and parsers for different anti-virus quarantine formats.
  ☆41Updated 3 years ago
• msuhanov / winmem_decompress
  Extract compressed memory pages from page-aligned data
  ☆41Updated 5 years ago
• cube0x8 / ChromeRagamuffin
  Google Chrome internals analysis using Volatility
  ☆39Updated last year
• jjarava / mac-osx-forensics
  Automatically exported from code.google.com/p/mac-osx-forensics
  ☆26Updated 8 years ago
• jankais3r / Forensic-Version-Checker
  Script that checks for available updates for the most commonly used Digital Forensics tools
  ☆57Updated 3 years ago
• jschicht / SetMace
  Manipulate timestamps on NTFS
  ☆48Updated 9 years ago
• tccontre / KnowledgeBase
  Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
  ☆53Updated 4 months ago
• dilagit / yaragui
  ☆64Updated this week
• libyal / libscca
  Library and tools to access the Windows Prefetch File (SCCA) format.
  ☆70Updated last month
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 3 years ago
• GDATAAdvancedAnalytics / winreg-tasks
  ☆13Updated 2 years ago
• Te-k / pecli
  CLI tool to analyze PE files
  ☆83Updated last year
• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• archcloudlabs / r2elk
  Radare2 Metadata Extraction to Elasticsearch
  ☆21Updated 4 months ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆45Updated 4 years ago
• kirk-sayre-work / xlmulator
  Python emulator for Excel XLM macros.
  ☆18Updated 4 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆128Updated 2 years ago
• volatilityfoundation / community3
  Volatility3 plugins developed and maintained by the community
  ☆41Updated last year
• woanware / JumpLister
  ☆18Updated 11 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆37Updated last year
• mnrkbys / vss_carver
  Carves and recreates VSS catalog and store from Windows disk image.
  ☆96Updated last year
• elceef / bitlocker
  Volatility Framework plugin for extracting BitLocker FVEK (Full Volume Encryption Key)
  ☆215Updated 8 years ago