memory-forensics
Here are 58 public repositories matching this topic...
Development guide for Volatility Plugins
-
Updated
Sep 6, 2017
A short and small memory forensics helper.
-
Updated
Oct 18, 2017 - Python
Not Only Forensics Toolkit
-
Updated
Apr 8, 2018 - PowerShell
-
Updated
Nov 2, 2018 - Python
Introducing the Temporal Dimension to Memory Forensics - ACM Transactions on Privacy and Security 2019
-
Updated
Jul 15, 2019 - Python
Minion rules for DFIR work.
-
Updated
Jun 9, 2020
Volatility profile for uclinux
-
Updated
Jun 19, 2020 - Python
Allows you to quickly query a Windows machine for RAM artifacts
-
Updated
Jul 17, 2020 - Python
WinDBG Anti-RootKit Extension
-
Updated
Jul 29, 2020 - C++
Reverse engineering the Black Energy Driver
-
Updated
Oct 27, 2020
Dump Module Mixer (dumd-mixer) is a Python script to generate a module from the same module extracted from a collection of memory dumps.
-
Updated
Nov 28, 2020 - Python
A script to assist in processing forensic RAM captures for malware triage
-
Updated
Feb 4, 2021 - Shell
Educational, CTF-styled labs for individuals interested in Memory Forensics
-
Updated
Mar 8, 2021 - Shell
Volatility plugin to obtain the number of the resident memory pages per module (exe or dll) and per driver from a Windows memory dump.
-
Updated
May 11, 2021 - Python
C# Implementation of Jared Atkinson's Get-InjectedThread.ps1
-
Updated
Jul 11, 2021 - C#
Volatility plugins to recover ML model attributes from memory images
-
Updated
Aug 10, 2021 - Python
My digital forensics notebook
-
Updated
Sep 10, 2021
Improve this page
Add a description, image, and links to the memory-forensics topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the memory-forensics topic, visit your repo's landing page and select "manage topics."