Volatility profile for uclinux
-
Updated
Jun 19, 2020 - Python
Volatility profile for uclinux
Repository for VAC 2018 Practice on Volatility3 Framework
Volatility plugin to obtain the number of the resident memory pages per module (exe or dll) and per driver from a Windows memory dump.
This repository contains memory forensics challenges that I've been solving using Volatility.
Volatility 3 plugins to extract a module as complete as possible
An updated fork of @bacanoicua's RAMDumpExplorer project. This is a program designed to analyze a dump of the RAM memory to search for potentially malicious files. The program scans the dump file for specific patterns and uses regular expressions to identify and extract the matched values
Volatility plugin to yield and compare similarity digest of modules on execution.
Memory Forensics and Analysis Using Volatility.
My Linux profiles built for Volatility 2/3
memory dump tool mirror for version 3.0.20171228.1
Volatility 2.6 plugin to undo modifications done by relocation process on modules
A library to read and write LiME files/blobs in python
Janus: malware analysis by memory comparison
A ProcInjectionsFind volatility plugin runs against malware-infected memory images or memory of live VMs and examines each memory region of all running processes to conclude if it is the result of process injection.
My digital forensics notebook
Add a description, image, and links to the memory-forensics topic page so that developers can more easily learn about it.
To associate your repository with the memory-forensics topic, visit your repo's landing page and select "manage topics."