Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Projects in Awesome Lists tagged with memory-forensics
A curated list of projects in awesome lists tagged with memory-forensics .
https://github.com/hasherezade/pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
anti-malware hooking libpeconv malware-analysis memory-forensics pe-analyzer pe-dumper pe-format pe-sieve process-analyzer scans
Last synced: 25 Sep 2024
https://github.com/hasherezade/hollows_hunter
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
anti-malware malware-analysis malware-detection memory-forensics pe-sieve
Last synced: 25 Sep 2024
https://github.com/microsoft/avml
AVML - Acquire Volatile Memory for Linux
linux-security memory-forensics rust
Last synced: 31 Jul 2024
https://github.com/swwwolf/wdbgark
WinDBG Anti-RootKit Extension
anomaly-detection anti-rootkit c-plus-plus crash-dump debugging-tool driver forensic-analysis kernel-mode malware malware-analysis malware-research memory-forensics sww swwwolf user-mode visual-studio wdbgark windbg windbg-extension windows
Last synced: 30 Jul 2024
https://github.com/teamdfir/sift
SIFT
aws cast cast-distro cli forensics issues-only memory-forensics salt-state saltstack sans sift timeline-analysis
Last synced: 27 Sep 2024
https://github.com/evild3ad/MemProcFS-Analyzer
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
dfir digital-forensics incident-response live-response memory-forensics memprocfs powershell
Last synced: 01 Aug 2024
https://github.com/patois/IDACyber
Data Visualization Plugin for IDA Pro
color-filter cyber data-visualization exploitation firmware-analysis ida ida-pro idapython-plugin memory-forensics memory-hacking pixel-art reverse-engineering
Last synced: 30 Jul 2024
https://github.com/cado-security/varc
Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of particular use when investigating a security incident.
aws aws-fargate aws-forensics aws-lambda cloud-security dfir dfir-automation docker-forensics eks-forensics fargate-forensics forensics hacktoberfest memory-forensics security
Last synced: 03 Aug 2024
https://github.com/gleeda/memtriage
Allows you to quickly query a Windows machine for RAM artifacts
live-analysis malware memory memory-analysis memory-forensics ram volatility windows-machine winpmem
Last synced: 01 Aug 2024
https://github.com/asiamina/A-Course-on-Digital-Forensics
A course on "Digital Forensics" designed and offered in the Computer Science Department at Texas Tech University
courses digital-forensics disk-forensics memory-forensics mobile-forensics network-forensics reverse-engineering
Last synced: 30 Jul 2024
https://github.com/msuiche/LiveCloudKd
Hyper-V Research is trendy now
memory-forensics virtual-machines
Last synced: 04 Aug 2024
https://github.com/cado-security/rip_raw
Rip Raw is a small tool to analyse the memory of compromised Linux systems.
dfir dfir-automation forensic-analysis forensics memory-forensics security
Last synced: 04 Aug 2024
https://github.com/Hestat/calamity
A script to assist in processing forensic RAM captures for malware triage
dfir malware-analysis memory-forensics volatility
Last synced: 01 Aug 2024
https://github.com/iAbadia/Volatility-Plugin-Tutorial
Development guide for Volatility Plugins
guide memory-forensics plugin python tutorial volatility
Last synced: 01 Aug 2024
https://github.com/TazWake/volatility-plugins
Learning volatility plugins.
memory-forensics python volatility-plugins
Last synced: 01 Aug 2024
https://github.com/amir9339/volatility-docker
A suite of Volatility 3 plugins for memory forensics of Docker containers
containers dfir docker memory-forensics volatility-plugins volatility3
Last synced: 01 Aug 2024
https://github.com/patois/idacyber
Data Visualization Plugin for IDA Pro
color-filter cyber data-visualization exploitation firmware-analysis ida ida-pro idapython-plugin memory-forensics memory-hacking pixel-art reverse-engineering
Last synced: 30 Jul 2024