Alternatives and similar repositories for community3:

Users that are interested in community3 are comparing it to the libraries listed below

• JPCERTCC / Windows-Symbol-Tables
  Windows symbol tables for Volatility 3
  ☆81Updated 8 months ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆91Updated 4 years ago
• breppo / Volatility-BitLocker
  Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…
  ☆43Updated 5 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated last year
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆66Updated last year
• knez / defender-dump
  Dump quarantined files from Windows Defender
  ☆61Updated 2 years ago
• forensicxlab / volatility3_plugins
  ☆22Updated 8 months ago
• jschicht / SetMace
  Manipulate timestamps on NTFS
  ☆50Updated 10 years ago
• fox-it / dissect.target
  The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…
  ☆54Updated last week
• harelsegev / prefetch-hash-cracker
  A small util to brute-force prefetch hashes
  ☆76Updated 2 years ago
• harelsegev / INDXRipper
  Carve file metadata from NTFS index ($I30) attributes
  ☆63Updated last year
• JPCERTCC / Lazarus-research
  Lazarus analysis tools and research report
  ☆55Updated last year
• gajos112 / Digital-Forensics
  ☆38Updated 3 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆44Updated 2 years ago
• tccontre / KnowledgeBase
  Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
  ☆54Updated last month
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆88Updated last year
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆80Updated 10 months ago
• GDATAAdvancedAnalytics / winreg-tasks
  ☆18Updated 2 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆97Updated 3 months ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆76Updated last year
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆75Updated 7 months ago
• mnrkbys / ma2tl
  macOS forensic timeline generator using the analysis result DBs of mac_apt
  ☆92Updated last year
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆58Updated 2 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated 11 months ago
• herosi / triage-collector
  ☆22Updated 5 months ago
• Immersive-Labs-Sec / volatility_plugins
  Volatility 3 Plugins
  ☆19Updated 2 years ago
• edygert / runsc
  runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…
  ☆36Updated 2 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆39Updated 2 years ago
• Squiblydoo / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆19Updated 2 years ago
• airbus-cert / minusone
  Powershell Linter
  ☆50Updated last week