volatilityfoundation / dwarf2json
convert ELF/DWARF symbol and type information into vol3's intermediate JSON
☆119Updated 6 months ago
Alternatives and similar repositories for dwarf2json:
Users that are interested in dwarf2json are comparing it to the libraries listed below
- Linpmem is a linux memory acquisition tool☆82Updated 11 months ago
- Windows symbol tables for Volatility 3☆83Updated 9 months ago
- The Linux port of the Sysinternals Sysmon tool.☆260Updated last month
- Volatility Symbol Generator for Linux Kernels☆34Updated last year
- Use YARA rules on Time Travel Debugging traces☆89Updated last year
- Generate Volatility3 profiles from BTF.☆19Updated 4 months ago
- Symbol hash for ELF files☆109Updated 3 years ago
- ☆105Updated last year
- Ghidra scripts for malware analysis☆93Updated last year
- An NTFS/FAT parser for digital forensics & incident response☆203Updated 5 months ago
- Volatility, on Docker 🐳☆34Updated last week
- Golang Parser for Microsoft Event Logs☆102Updated 3 months ago
- capemon: CAPE's monitor☆116Updated this week
- FLARE Team's Binary Navigator☆252Updated 2 weeks ago
- ☆101Updated 2 years ago
- Volatility3 plugins developed and maintained by the community☆51Updated 2 years ago
- Memory acquisition for Linux that makes sense.☆184Updated last year
- Malduck is your ducky companion in malware analysis journeys☆329Updated 10 months ago
- Alternative YARA scanning engine☆70Updated 2 years ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆210Updated this week
- The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…☆91Updated last month
- Collection of Volatility2 profiles, generated against Linux kernels.☆38Updated 3 weeks ago
- Red Canary's eBPF Sensor☆104Updated 9 months ago
- Automatically generate AV byte signatures from sets of similar binaries.☆269Updated 4 months ago
- Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.☆120Updated 4 months ago
- A collection of modules and scripts to help with analyzing Nim binaries☆72Updated 6 months ago
- Elastic Security Labs releases☆62Updated 3 weeks ago
- Library and tools to access the Windows Prefetch File (SCCA) format.☆73Updated 3 months ago
- Community modules for CAPE Sandbox☆95Updated last week
- Native Python3 bindings for @horsicq's Detect-It-Easy☆64Updated last month