15 results found Sort:
- Filter by Primary Language:
- C (3)
- Python (3)
- PowerShell (2)
- C++ (1)
- Shell (1)
- Rich Text Format (1)
- Rust (1)
- C# (1)
- +
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
Created
2017-08-22
1,887 commits to master branch, last one 7 days ago
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Created
2018-01-11
754 commits to master branch, last one 7 days ago
Educational, CTF-styled labs for individuals interested in Memory Forensics
Created
2019-08-22
28 commits to master branch, last one 3 years ago
AVML - Acquire Volatile Memory for Linux
Created
2019-06-06
456 commits to main branch, last one 3 days ago
Dynamic unpacker based on PE-sieve
Created
2018-07-08
360 commits to master branch, last one 9 months ago
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
Created
2021-05-15
143 commits to main branch, last one 27 days ago
SIFT
Created
2014-01-18
31 commits to master branch, last one 10 months ago
Data Visualization Plugin for IDA Pro
Created
2017-01-12
132 commits to master branch, last one 2 years ago
Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of particular use when investigating a security incident.
This repository has been archived
(exclude archived)
Created
2022-09-16
74 commits to main branch, last one 3 months ago
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
Created
2022-07-14
32 commits to main branch, last one 9 months ago
A course on "Digital Forensics" designed and offered in the Computer Science Department at Texas Tech University
Created
2018-05-08
501 commits to master branch, last one about a year ago
Hyper-V Research is trendy now
Created
2018-06-17
136 commits to master branch, last one 7 months ago
Rip Raw is a small tool to analyse the memory of compromised Linux systems.
This repository has been archived
(exclude archived)
Created
2022-01-27
6 commits to main branch, last one 2 years ago
C# Implementation of Jared Atkinson's Get-InjectedThread.ps1
Created
2020-06-18
24 commits to master branch, last one 3 years ago
A curated list of awesome malware analysis tools and resources
Created
2022-01-07
13 commits to main branch, last one 2 years ago