volatilityfoundation / volatility3Links
Volatility 3.0 development
☆3,209Updated 2 weeks ago
Alternatives and similar repositories for volatility3
Users that are interested in volatility3 are comparing it to the libraries listed below
Sorting:
- An advanced memory forensics framework☆7,729Updated last month
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆7,663Updated 2 weeks ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,562Updated last week
- Please no pull requests for this repository. Thanks!☆2,248Updated last week
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆7,390Updated last month
- Malware Configuration And Payload Extraction☆2,495Updated this week
- oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware a…☆3,095Updated 3 weeks ago
- A curated list of awesome YARA rules, tools, and people.☆3,842Updated 3 months ago
- Windows Exploit Suggester - Next Generation☆4,492Updated this week
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,261Updated 9 months ago
- Linux privilege escalation auditing tool☆6,009Updated last year
- Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…☆3,265Updated 5 months ago
- Repository of yara rules☆4,426Updated last year
- YARA signature and IOC database for my scanners and tools☆2,659Updated this week
- A collaborative, multi-platform, red teaming framework☆3,777Updated this week
- The pattern matching swiss knife☆8,856Updated 3 weeks ago
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,411Updated last year
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆5,881Updated last month
- Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.☆4,652Updated 2 weeks ago
- The ultimate WinRM shell for hacking/pentesting☆4,900Updated 6 months ago
- Red Teaming Tactics and Techniques☆4,296Updated 10 months ago
- Mimikatz implementation in pure Python☆3,059Updated 3 weeks ago
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,190Updated 2 months ago
- Adversary Emulation Framework☆9,577Updated last week
- Interesting APT Report Collection And Some Special IOCs☆2,583Updated 2 weeks ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,943Updated 2 months ago
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,396Updated this week
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,078Updated 2 years ago
- Attack and defend active directory using modern post exploitation adversary tradecraft activity☆4,642Updated 2 weeks ago
- yarGen is a generator for YARA rules☆1,657Updated 2 months ago