Alternatives and similar repositories for dwarf2json

Users that are interested in dwarf2json are comparing it to the libraries listed below

• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆84Updated last year
• JPCERTCC / Windows-Symbol-Tables
  Windows symbol tables for Volatility 3
  ☆86Updated 11 months ago
• volatilityfoundation / community3
  Volatility3 plugins developed and maintained by the community
  ☆58Updated 2 years ago
• msuhanov / dfir_ntfs
  An NTFS/FAT parser for digital forensics & incident response
  ☆203Updated 7 months ago
• vobst / btf2json
  Generate Volatility3 profiles from BTF.
  ☆24Updated 6 months ago
• MagnetForensics / dumpit-linux
  Memory acquisition for Linux that makes sense.
  ☆198Updated last year
• kevoreilly / capemon
  capemon: CAPE's monitor
  ☆122Updated last week
• microsoft / SysinternalsEBPF
  The Linux port of the Sysinternals Sysmon tool.
  ☆263Updated 3 months ago
• NozomiNetworks / upx-recovery-tool
  ☆102Updated 2 years ago
• kevthehermit / volatility_symbols
  Volatility Symbol Generator for Linux Kernels
  ☆35Updated last year
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆64Updated last month
• sk4la / volatility3-docker
  Volatility, on Docker 🐳
  ☆34Updated 2 months ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆144Updated 4 months ago
• elastic / labs-releases
  Elastic Security Labs releases
  ☆68Updated this week
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆91Updated last year
• pan-unit42 / dotnetfile
  ☆106Updated last year
• avast / yarang
  Alternative YARA scanning engine
  ☆70Updated 2 years ago
• CAPESandbox / community
  Community modules for CAPE Sandbox
  ☆100Updated last week
• fox-it / dissect.target
  The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…
  ☆62Updated this week
• breppo / Volatility-BitLocker
  Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…
  ☆50Updated 5 years ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆107Updated last week
• Velocidex / evtx
  Golang Parser for Microsoft Event Logs
  ☆102Updated 5 months ago
• michelcrypt4d4mus / yaralyzer
  Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.
  ☆128Updated 6 months ago
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆224Updated last week
• avast / yaramod
  Parsing of YARA rules into AST and building new rulesets in C++.
  ☆124Updated last month
• google / vxsig
  Automatically generate AV byte signatures from sets of similar binaries.
  ☆273Updated 6 months ago
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆337Updated last month
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆111Updated 3 years ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆91Updated 4 years ago
• claroty / arya
  Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.
  ☆249Updated 2 years ago