vobst / btf2json
Generate Volatility3 profiles from BTF.
☆13Updated 3 months ago
Alternatives and similar repositories for btf2json:
Users that are interested in btf2json are comparing it to the libraries listed below
- Collection of Volatility2 profiles, generated against Linux kernels.☆36Updated this week
- Volatility Symbol Generator for Linux Kernels☆34Updated last year
- Windows symbol tables for Volatility 3☆81Updated 8 months ago
- Use YARA rules on Time Travel Debugging traces☆88Updated last year
- Get information about stripped rust executables☆27Updated last week
- Collection of Linux and macOS Volatility3 Intermediate Symbol Files (ISF), suitable for memory analysis 🔍☆105Updated this week
- Powershell Linter☆50Updated 2 weeks ago
- Writeups for CTF challenges☆30Updated last year
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆70Updated 11 months ago
- The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…☆54Updated this week
- Linpmem is a linux memory acquisition tool☆78Updated 10 months ago
- A collection of modules and scripts to help with analyzing Nim binaries☆73Updated 5 months ago
- Rust symbol recovery tool☆45Updated last week
- ☆113Updated last month
- Elastic Security Labs releases☆61Updated this week
- Repository of Yara Rules☆103Updated last month
- Dump quarantined files from Windows Defender☆62Updated 2 years ago
- Volatility3 Linux profiles☆34Updated last week
- ☆105Updated last year
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Updated last year
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆114Updated last year
- A guide on how to write fast and memory friendly YARA rules☆141Updated last month
- Configuration Extractors for Malware☆94Updated 2 months ago
- Alternative YARA scanning engine☆70Updated 2 years ago
- ☆155Updated 10 months ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆114Updated 8 months ago
- MWDB exercises☆19Updated 2 months ago
- ☆73Updated 8 months ago
- Powershell script deobfuscation using AST in Python☆65Updated last year
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆163Updated 3 weeks ago