volatilityfoundation / volatility
An advanced memory forensics framework
☆7,528Updated last year
Alternatives and similar repositories for volatility:
Users that are interested in volatility are comparing it to the libraries listed below
- Volatility 3.0 development☆2,907Updated this week
- The pattern matching swiss knife☆8,542Updated last week
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,412Updated this week
- A swiss army knife for pentesting networks☆8,587Updated last year
- Repository of yara rules☆4,287Updated 10 months ago
- Impacket is a collection of Python classes for working with network protocols.☆13,896Updated this week
- CTF framework and exploit development library☆12,358Updated this week
- LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices…☆1,777Updated 4 months ago
- RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data☆5,930Updated 3 months ago
- Rekall Memory Forensic Framework☆1,940Updated 4 years ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆5,663Updated 3 weeks ago
- PEDA - Python Exploit Development Assistance for GDB☆5,951Updated 6 months ago
- ☆3,515Updated 11 months ago
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,082Updated 4 months ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,600Updated 4 years ago
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆6,922Updated this week
- Empire is a PowerShell and Python post-exploitation agent.☆7,546Updated 5 years ago
- Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors☆3,341Updated last year
- Windows Exploit Suggester - Next Generation☆4,325Updated last week
- Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.☆4,381Updated last month
- A curated list of awesome YARA rules, tools, and people.☆3,684Updated last week
- Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's po…☆3,786Updated last year
- Please no pull requests for this repository. Thanks!☆2,130Updated last week
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,029Updated last year
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,611Updated 2 years ago
- Six Degrees of Domain Admin☆10,046Updated last week
- Linux privilege escalation auditing tool☆5,799Updated last year
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,854Updated last month
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,199Updated last year
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆8,993Updated 9 months ago