volatilityfoundation / dwarf2json

Related projects ⓘ

Alternatives and complementary repositories for dwarf2json

• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆75Updated 6 months ago
• JPCERTCC / Windows-Symbol-Tables
  Windows symbol tables for Volatility 3
  ☆75Updated 4 months ago
• kevthehermit / volatility_symbols
  Volatility Symbol Generator for Linux Kernels
  ☆31Updated last year
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆86Updated last year
• microsoft / SysinternalsEBPF
  The Linux port of the Sysinternals Sysmon tool.
  ☆241Updated last week
• google / vxsig
  Automatically generate AV byte signatures from sets of similar binaries.
  ☆259Updated 9 months ago
• NozomiNetworks / upx-recovery-tool
  ☆96Updated last year
• claroty / arya
  Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.
  ☆240Updated last year
• Velocidex / evtx
  Golang Parser for Microsoft Event Logs
  ☆98Updated 3 months ago
• Gui774ume / krie
  Linux Kernel Runtime Integrity with eBPF
  ☆164Updated last year
• quarkslab / pyrrha
  A tool for firmware cartography
  ☆138Updated 8 months ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆126Updated last year
• memoryforensics1 / VolExp
  volatility explorer
  ☆90Updated 4 years ago
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆102Updated 2 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆67Updated 2 years ago
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆141Updated 9 months ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆101Updated 4 months ago
• danielplohmann / mcrit
  The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…
  ☆86Updated 5 months ago
• breppo / Volatility-BitLocker
  Volatility plugin to retrieve the Full Volume Encryption Key in memory. The FVEK can then be used with the help of Dislocker to mount the…
  ☆35Updated 4 years ago
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆88Updated last week
• michelcrypt4d4mus / yaralyzer
  Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.
  ☆107Updated 7 months ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆47Updated 2 years ago
• sk4la / volatility3-docker
  Volatility, on Docker 🐳
  ☆29Updated 4 months ago
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆319Updated 5 months ago
• Abyss-W4tcher / volatility3-symbols
  Collection of Linux and macOS Volatility3 Intermediate Symbol Files (ISF), suitable for memory analysis 🔍
  ☆78Updated last week
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆64Updated 2 years ago
• pan-unit42 / dotnetfile
  ☆100Updated last year
• AllsafeCyberSecurity / ghidra_scripts
  Ghidra scripts for malware analysis
  ☆90Updated 10 months ago
• volatilityfoundation / community3
  Volatility3 plugins developed and maintained by the community
  ☆45Updated last year
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆98Updated 2 months ago