Educational, CTF-styled labs for individuals interested in Memory Forensics
-
Updated
Jul 23, 2020
#
memory-forensics
Here are 23 public repositories matching this topic...
WinDBG Anti-RootKit Extension
windows
c-plus-plus
visual-studio
malware
driver
kernel-mode
crash-dump
windbg
malware-analysis
windbg-extension
malware-research
forensic-analysis
debugging-tool
memory-forensics
anomaly-detection
anti-rootkit
wdbgark
user-mode
sww
wa-haltables
wa-idt
wa-objtype
wa-ssdt
wa-colorize
wa-checkmsr
wa-pnptable
wa-crashdmpcall
wa-objtypecb
swwwolf
-
Updated
Jul 29, 2020 - C++
AVML - Acquire Volatile Memory for Linux
-
Updated
Aug 18, 2020 - Rust
Data Visualization Plugin for IDA Pro
pixel-art
reverse-engineering
data-visualization
memory-hacking
ida
ida-pro
cyber
exploitation
idapython-plugin
memory-forensics
color-filter
firmware-analysis
-
Updated
Jun 9, 2020 - Python
Allows you to quickly query a Windows machine for RAM artifacts
ram
memory
malware
memory-analysis
volatility
memory-forensics
windows-machine
live-analysis
winpmem
-
Updated
Jul 17, 2020 - Python
A short and small memory forensics helper.
-
Updated
Oct 18, 2017 - Python
A course on "Digital Forensics" designed and offered in the Computer Science Department at Texas Tech University
-
Updated
Dec 25, 2019
Development guide for Volatility Plugins
-
Updated
Sep 6, 2017
A script to assist in processing forensic RAM captures for malware triage
-
Updated
Feb 27, 2020 - Shell
Tool to extract the kallsyms (System.map) from a memory dump
-
Updated
Jul 29, 2020 - Python
Minion rules for DFIR work.
-
Updated
Jun 9, 2020
Not Only Forensics Toolkit
-
Updated
Apr 8, 2018 - PowerShell
-
Updated
Nov 2, 2018 - Python
Volatility profile for uclinux
-
Updated
Jun 19, 2020 - Python
Introducing the Temporal Dimension to Memory Forensics - ACM Transactions on Privacy and Security 2019
-
Updated
Jul 15, 2019 - Python
The CARLA driving simulator is a great way to cheaply model a self-driving car. These plugins are perfect for mining vehicle data after acquiring a memory dump.
python
volatility
memory-forensics
volatility-plugins
volatility-framework
carla-simulator
carla-driving-simulator
-
Updated
Jul 30, 2020 - Python
C# Implementation of Jared Atkinson's Get-InjectedThread.ps1
-
Updated
Aug 15, 2020 - C#
Volatility plugin to yield and compare similarity digest of modules on execution.
python
sum
volatility
memory-forensics
volatility-plugins
approximate-matching
fuzzy-hash
similarity-digest
-
Updated
Aug 6, 2020 - Python
Improve this page
Add a description, image, and links to the memory-forensics topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the memory-forensics topic, visit your repo's landing page and select "manage topics."