volatilityfoundation / communityLinks
Volatility plugins developed and maintained by the community
☆365Updated 4 years ago
Alternatives and similar repositories for community
Users that are interested in community are comparing it to the libraries listed below
Sorting:
- Volatility profiles for Linux and Mac OS X☆325Updated 2 years ago
- Plugins I've written for Volatility☆206Updated last year
- ☆427Updated 2 years ago
- PowerShell script for deobfuscating encoded PowerShell scripts☆425Updated 4 years ago
- Artifact analysis tools by JPCERT/CC Analysis Center☆460Updated last year
- ☆512Updated 4 years ago
- Script for automating Linux memory capture and analysis☆271Updated 5 years ago
- ☆278Updated 2 years ago
- Web App for Volatility framework☆383Updated 2 weeks ago
- Automatic Yara Rule Generation☆334Updated 9 years ago
- Malware Configuration And Payload Extraction☆760Updated 8 months ago
- Pure Python parser for Windows Registry hives.☆431Updated 6 months ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆267Updated 4 years ago
- Yara Rule Analyzer and Statistics☆376Updated 2 years ago
- ☆713Updated 2 years ago
- Beta versions of my software☆259Updated last month
- analyzeMFT.py is designed to fully parse the MFT file from an NTFS filesystem and present the results as accurately as possible in multip…☆487Updated 2 weeks ago
- RDP Bitmap Cache parser☆549Updated 6 months ago
- ☆304Updated 4 years ago
- YARA malware query accelerator (web frontend)☆433Updated 4 months ago
- Kaspersky's GReAT KLara☆710Updated last year
- Volatility plugin for extracts configuration data of known malware☆490Updated last year
- Repository of modules and signatures contributed by the community☆328Updated 2 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,096Updated last year
- Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.☆206Updated 11 years ago
- PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.☆613Updated 2 years ago
- Digital forensic acquisition tool for Windows based incident response.☆344Updated last year
- Web interface for the Volatility Memory Forensics Framework☆259Updated 7 years ago
- DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …☆327Updated 5 months ago
- Indicators from Unit 42 Public Reports☆718Updated last week