MalConfScan
Malware analyzer
Tools to extract configuration data from known malware samples in memory images.
Volatility plugin for extracts configuration data of known malware
483 stars
36 watching
67 forks
Language: Python
last commit: 12 months ago
Linked from 2 awesome lists
forensicsmalwarememorypythonsecurityvolatility
meirwah/awesome-incident-response
inquest/awesome-yaraRelated projects:
| Repository | Description | Stars |
|---|---|---|
| jpcertcc/aa-tools | A collection of tools and scripts for analyzing malware, reverse engineering malware, and decrypting encrypted data | 455 |
 uqcyber/coldpress | Automates malware analysis workflow by extracting features and indicators of compromise from malicious files using various tools and libraries. | 16 |
 malwarecantfly/vba2graph | Analyzes VBA code to generate visual call graphs and highlights potential malicious keywords | 275 |
 mkorman90/volatilitybot | Automates memory analysis of malware samples and memory dumps by extracting binaries, injections, strings, and analyzing code using heuristics and YARA/Clam AV scanners. | 264 |
 mitrecnd/malchive | A collection of reusable scripts and tools for analyzing malicious software | 75 |
 trustedsec/pplfaultdumpbof | Tools for analyzing PPLFault-related malware behavior on Windows 10 | 134 |
 cristianzsh/freki | A platform for analyzing malware and performing reverse engineering on binary files | 424 |
 deepfence/yarahunter | Automated malware scanning tool for containers and filesystems using YARA ruleset | 1,275 |
 forensicxlab/volatility3_plugins | A collection of plugins for analyzing digital forensic data from various sources | 22 |
 misterch0c/malsploitbase | A repository of publicly available malware exploits targeting specific infrastructure. | 537 |
 malwaretech/citrixhoneypot | A tool designed to detect and log Citrix ADC vulnerability scans and exploitation attempts | 114 |
 tomchop/malcom | Analyzes network traffic to detect malware communication and behavior | 1,157 |
 joxeankoret/pyew | A command-line tool for analyzing malware and disassembling binary files | 386 |
 pjrinaldi/wombatforensics | A multi-threaded GUI forensic analysis tool for Linux | 48 |
 lprat/static_file_analysis | Analyzes files to detect malware and extract embedded content | 49 |