volatilityfoundation / community3
Volatility3 plugins developed and maintained by the community
☆41Updated last year
Related projects: ⓘ
- Yara Rules for Modern Malware☆68Updated 6 months ago
- Python based CLI for MalwareBazaar☆36Updated 9 months ago
- Modular malware analysis artifact collection and correlation framework☆49Updated 4 months ago
- Reads and prints information from the website MalAPI.io☆19Updated 2 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆42Updated last year
- ☆34Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆57Updated last year
- ShellSweeping the evil.☆49Updated 3 months ago
- Windows symbol tables for Volatility 3☆72Updated 2 months ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆80Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆74Updated 2 years ago
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆86Updated 3 years ago
- volatility explorer☆90Updated 3 years ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- Simple PowerShell script to enable process scanning with Yara.☆86Updated last year
- AdHoc solutions☆48Updated last year
- YARA rule analyzer to improve rule quality and performance☆93Updated 9 months ago
- The Windows Malware Analysis Reversing Core Tools☆88Updated 3 years ago
- ☆21Updated last month
- ☆27Updated 2 years ago
- runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…☆34Updated last year
- Rules Shared by the Community from 100 Days of YARA 2023☆76Updated last year
- Placeholder for my detection repo and misc detection engineering content☆43Updated 11 months ago
- A C# based tool for analysing malicious OneNote documents☆108Updated last year
- Digital Forensics Artifacts Knowledge Base☆71Updated 4 months ago
- Manipulate timestamps on NTFS☆48Updated 9 years ago
- Generate YARA rules for OOXML documents.☆37Updated last year
- Volatility 3 Plugins☆19Updated last year
- Dump quarantined files from Windows Defender☆51Updated 2 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆66Updated 10 months ago