https://github.com/andreafortuna/malhunt

Hunt malware with Volatility
https://github.com/andreafortuna/malhunt

malware-analysis python volatility

Last synced: about 1 year ago
JSON representation

Hunt malware with Volatility

Host: GitHub
URL: https://github.com/andreafortuna/malhunt
Owner: andreafortuna
Created: 2018-07-11T19:01:26.000Z (almost 8 years ago)
Default Branch: master
Last Pushed: 2024-05-07T14:21:33.000Z (about 2 years ago)
Last Synced: 2025-03-20T20:12:51.808Z (about 1 year ago)
Topics: malware-analysis, python, volatility
Language: Python
Homepage:
Size: 623 KB
Stars: 47
Watchers: 4
Forks: 12
Open Issues: 1
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-forensics - **16**星

README

# Malhunt

Search malware in memory dumps using Volatiliy.

## Requirements

- Python
- Git
- Volatility
- Clamscan

## How it works

![Malhunt demo](/img/malhunt.gif)

The script applies my workflow for malware analysis:

- Performs image identification
- Scans processes with yara rules, malfind and network blacklist in order to find suspicious artifacts
- Saves memory dump and handles of suspicious processes
- Scans saved processes with clamscan

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/andreafortuna/malhunt

Awesome Lists containing this project

README