Volatility3 plugins developed and maintained by the community
☆63Mar 19, 2023Updated 3 years ago
Alternatives and similar repositories for community3
Users that are interested in community3 are comparing it to the libraries listed below
Sorting:
- ☆24Apr 22, 2025Updated 11 months ago
- exploit-database-papers☆13Nov 27, 2017Updated 8 years ago
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆10Jul 15, 2023Updated 2 years ago
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆38Mar 25, 2024Updated last year
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 4 months ago
- ☆25Jul 23, 2024Updated last year
- Windows symbol tables for Volatility 3☆93Jul 11, 2024Updated last year
- Volatility plugins developed and maintained by the community☆375Apr 5, 2021Updated 4 years ago
- WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.☆32Nov 16, 2023Updated 2 years ago
- Volatility Explorer Suit☆67Jan 3, 2023Updated 3 years ago
- Volatility Symbol Generator for Linux Kernels☆36Nov 15, 2023Updated 2 years ago
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆18Apr 30, 2025Updated 10 months ago
- Windows Thingies... but in Rust☆23Nov 12, 2022Updated 3 years ago
- macOS Artifact Intelligence Tool☆13Apr 30, 2019Updated 6 years ago
- Harvest Linux forensic data for operational triage of an event.☆51Nov 30, 2025Updated 3 months ago
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆93Sep 7, 2023Updated 2 years ago
- A suite of Volatility 3 plugins for memory forensics of Docker containers☆18Jan 10, 2024Updated 2 years ago
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 4 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- ReWrite of AChoir in Go for Cross Platform forensic artifact collection and processing☆41Feb 28, 2026Updated 3 weeks ago
- ☆24Mar 12, 2025Updated last year
- Volatility3 Linux profiles☆76Dec 8, 2025Updated 3 months ago
- macOS .DS_Store Parser☆78Aug 17, 2021Updated 4 years ago
- DRAKVUF Black-box Binary Analysis☆15Feb 26, 2026Updated 3 weeks ago
- Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)☆196Feb 16, 2023Updated 3 years ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆56Jul 2, 2023Updated 2 years ago
- A config file that's curated for DFIR examiners with shortcuts to common Windows artifacts and settings enabled that help make your life …☆39Jan 6, 2025Updated last year
- Collection of Ghidra convenience VR scripts☆12Dec 14, 2024Updated last year
- Parser fo macOS/iOS FSEvents Logs☆43May 6, 2024Updated last year
- Windows 10 Live Information viewer☆38Jan 27, 2022Updated 4 years ago
- Yara rules☆22Mar 27, 2023Updated 2 years ago
- Disk Image Mounting Script☆11Jan 22, 2026Updated 2 months ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Jun 27, 2023Updated 2 years ago
- A tool to automate memory dump processing using Volatility, including optional Splunk integration.☆11Jul 29, 2020Updated 5 years ago
- $MFT directory tree reconstruction & FILE record info☆325Oct 7, 2024Updated last year
- This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.☆21Sep 30, 2022Updated 3 years ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 9 months ago
- volatility explorer☆92Nov 16, 2020Updated 5 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year