Alternatives and similar repositories for volatility-bitlocker

Users that are interested in volatility-bitlocker are comparing it to the libraries listed below

• MagnetForensics / Hibr2Bin
  Comae Hibernation File Decompressor
  ☆155Updated 2 years ago
• mandiant / win10_volatility
  An advanced memory forensics framework
  ☆96Updated 6 years ago
• kevthehermit / volatility_plugins
  Volatility Plugins
  ☆64Updated 2 years ago
• you0708 / lznt1
  Python implementation of LZNT1 compression/decompression
  ☆65Updated 5 years ago
• tomchop / unxor
  unXOR will search a XORed file and try to guess the key using known-plaintext attacks.
  ☆143Updated 5 years ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆93Updated 5 years ago
• Paul-Tew / lifer
  Windows link file (shortcuts) examiner
  ☆67Updated last year
• lemmou / RansomNoteFiles
  ☆24Updated last year
• woanware / JumpLister
  ☆18Updated 12 years ago
• Heat-Miser / tinynuke-toolset
  Set of tools to analyze Tinynuke samples
  ☆15Updated 4 years ago
• cyb3rfox / MFTEntryCarver
  Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…
  ☆22Updated 6 years ago
• cube0x8 / ChromeRagamuffin
  Google Chrome internals analysis using Volatility
  ☆42Updated 3 years ago
• aleksost / MemoryDecompression
  Tool to decompress data from Windows 10 page files and memory dumps, that has been compressed by the Windows 10 memory manager.
  ☆51Updated 6 years ago
• breppo / Volatility-BitLocker
  Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…
  ☆52Updated 5 years ago
• SecurityRiskAdvisors / PDBlaster
  ☆48Updated 5 years ago
• archcloudlabs / r2elk
  Radare2 Metadata Extraction to Elasticsearch
  ☆23Updated last year
• RUB-NDS / MS-RMS-Attacks
  Breaking the security of Microsoft's RMS
  ☆55Updated 6 years ago
• dfirfpi / dpapilab
  Windows DPAPI laboratory
  ☆94Updated 7 years ago
• NTFSparse / ntfs_parse
  NTFS parser, plus linking capabilites between MFT LogFile and UsnJrnl
  ☆38Updated 9 years ago
• nmantani / FileInsight-plugins
  FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis
  ☆162Updated 11 months ago
• msuhanov / winmem_decompress
  Extract compressed memory pages from page-aligned data
  ☆46Updated 7 years ago
• williballenthin / python-evt
  Pure Python parser for classic Windows Event Log files (.evt)
  ☆50Updated 2 years ago
• Te-k / pecli
  CLI tool to analyze PE files
  ☆89Updated last year
• ANSSI-FR / bootcode_parser
  A boot record parser that identifies known good signatures for MBR, VBR and IPL.
  ☆96Updated 9 months ago
• EricZimmerman / bstrings
  A better strings utility!
  ☆143Updated 2 months ago
• ufrisk / MemProcFS-plugins
  ☆61Updated last year
• jjarava / mac-osx-forensics
  Automatically exported from code.google.com/p/mac-osx-forensics
  ☆28Updated 9 years ago
• b1ack0wl / DVRF
  The Damn Vulnerable Router Firmware Project
  ☆31Updated 7 years ago
• Neo23x0 / DLLRunner
  Smart DLL execution for malware analysis in sandbox systems
  ☆144Updated 10 years ago
• Big5-sec / SourceFu
  hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…
  ☆40Updated 6 years ago