volatilityfoundation / volatilityLinks
An advanced memory forensics framework
☆7,704Updated 3 weeks ago
Alternatives and similar repositories for volatility
Users that are interested in volatility are comparing it to the libraries listed below
Sorting:
- Volatility 3.0 development☆3,165Updated last week
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,552Updated this week
- The pattern matching swiss knife☆8,804Updated this week
- Repository of yara rules☆4,410Updated last year
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,695Updated 3 years ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,925Updated last month
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆7,339Updated 3 weeks ago
- LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices…☆1,818Updated 7 months ago
- Rekall Memory Forensic Framework☆1,955Updated 4 years ago
- A swiss army knife for pentesting networks☆8,746Updated last year
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,240Updated 8 months ago
- A curated list of awesome YARA rules, tools, and people.☆3,827Updated 2 months ago
- Empire is a PowerShell and Python post-exploitation agent.☆7,621Updated 5 years ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,680Updated 4 years ago
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆7,618Updated this week
- Loki - Simple IOC and YARA Scanner☆3,552Updated 6 months ago
- Six Degrees of Domain Admin☆10,200Updated 3 weeks ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆12,376Updated 4 years ago
- Automated Adversary Emulation Platform☆6,173Updated 2 weeks ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆5,848Updated 2 weeks ago
- Impacket is a collection of Python classes for working with network protocols.☆14,375Updated this week
- A powerful and user-friendly binary analysis platform!☆7,983Updated last week
- ☆3,595Updated last year
- Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's po…☆3,835Updated last year
- Please no pull requests for this repository. Thanks!☆2,228Updated last week
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆9,232Updated last year
- Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors☆3,383Updated last year
- Linux privilege escalation auditing tool☆5,972Updated last year
- CTF framework and exploit development library☆12,635Updated last month
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,721Updated last week