Volatility plugins developed and maintained by the community
☆376Apr 5, 2021Updated 4 years ago
Alternatives and similar repositories for community
Users that are interested in community are comparing it to the libraries listed below
Sorting:
- Volatility profiles for Linux and Mac OS X☆327Oct 30, 2022Updated 3 years ago
- An advanced memory forensics framework☆7,972May 16, 2025Updated 9 months ago
- Web App for Volatility framework☆390Jan 13, 2026Updated last month
- Autoruns plugin for the Volatility framework☆122Jul 18, 2019Updated 6 years ago
- Plugins I've written for Volatility☆216Dec 1, 2023Updated 2 years ago
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆197Sep 12, 2017Updated 8 years ago
- PowerForensics provides an all in one platform for live disk forensic analysis☆1,428Nov 16, 2023Updated 2 years ago
- Volatility3 plugins developed and maintained by the community☆63Mar 19, 2023Updated 2 years ago
- Rekall Memory Forensic Framework☆1,997Oct 18, 2020Updated 5 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆270Jun 15, 2021Updated 4 years ago
- Super timeline all the things☆2,017Feb 10, 2026Updated 2 weeks ago
- Comae Hibernation File Decompressor☆156Apr 1, 2023Updated 2 years ago
- Web interface for the Volatility Memory Forensics Framework☆260Nov 21, 2017Updated 8 years ago
- Scripts and code referenced in CrowdStrike blog posts☆337Nov 13, 2019Updated 6 years ago
- ☆432May 3, 2023Updated 2 years ago
- ☆15Jun 12, 2015Updated 10 years ago
- Differential Analysis of Malware in Memory☆216Apr 16, 2017Updated 8 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Mar 3, 2019Updated 6 years ago
- ☆82Jul 5, 2016Updated 9 years ago
- Volatility Explorer Suit☆66Jan 3, 2023Updated 3 years ago
- Volatility Plugins☆22May 1, 2015Updated 10 years ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,231Aug 7, 2025Updated 6 months ago
- LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices…☆1,936Nov 9, 2025Updated 3 months ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆937Dec 12, 2023Updated 2 years ago
- Volatility 3.0 development☆3,931Feb 20, 2026Updated last week
- Digital Forensics artifact repository☆1,207Feb 11, 2026Updated 2 weeks ago
- threadmap plugin for Volatility Foundation☆27Aug 23, 2021Updated 4 years ago
- SIFT☆534Feb 14, 2024Updated 2 years ago
- ☆519Jan 26, 2021Updated 5 years ago
- ☆453Nov 21, 2024Updated last year
- Evidence Fetcher (efetch) is a web-based file explorer, viewer, and analyzer.☆39Apr 11, 2020Updated 5 years ago
- Script for automating Linux memory capture and analysis☆274Feb 1, 2020Updated 6 years ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,897Updated this week
- analyzeMFT.py is designed to fully parse the MFT file from an NTFS filesystem and present the results as accurately as possible in multip…☆522Aug 13, 2025Updated 6 months ago
- ☆309Aug 14, 2020Updated 5 years ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆2,083Dec 9, 2025Updated 2 months ago
- Recover event log entries from an image by heurisitically looking for record structures.☆26Oct 9, 2015Updated 10 years ago
- MantaRay Automated Computer Forensic Triage Tool☆65Feb 19, 2019Updated 7 years ago
- Protocol Analysis/Decoder Framework☆497Dec 19, 2022Updated 3 years ago