avml
Memory acquisition tool
A tool that captures volatile memory images from Linux systems without prior knowledge of the target OS or kernel.
AVML - Acquire Volatile Memory for Linux
883 stars
32 watching
77 forks
Language: Rust
last commit: about 2 months ago
Linked from 3 awesome lists
linux-securitymemory-forensicsrust
meirwah/awesome-incident-response
cugu/awesome-forensics
digitalisx/awesome-memory-forensicsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 velocidex/winpmem | A tool for acquiring and manipulating physical memory in Windows | 708 |
 natebrune/fmem | A Linux kernel module designed to help analyze volatile memory without the limitations of traditional memory dumping tools. | 115 |
 alteryx/evalml | Automates machine learning pipeline construction and optimization | 788 |
 crowdstrike/supermem | A tool for processing Windows memory images to extract relevant information | 260 |
 shanek2/invtero.net | Analyzes and validates physical memory from various systems to extract process information and hypervisor details | 281 |
 504ensicslabs/lime | A tool that captures and extracts volatile memory from Linux devices in a forensically sound way. | 1,739 |
 rek7/mxtract | Analyzes and dumps memory to extract sensitive information from running processes | 582 |
 ufrisk/leechcore | A library and remote memory acquisition agent for acquiring physical memory using various methods. | 540 |
 ftramer/steal-ml | A tool for extracting machine learning models from cloud-based services using prediction APIs | 344 |
| microsoft/kernel-memory | An AI service for efficient indexing and querying of datasets using LLMs and natural language processing techniques. | 1,660 |
 ytisf/muninn | A tool to assist in memory forensics analysis on Windows systems by automating the process of extracting and exporting relevant data from memory images. | 52 |
 stcarrez/mat | A tool to analyze memory usage in programs | 7 |
 ajmartel/irtriage | Automated incident response tool for collecting critical system information during forensic analysis of Windows systems. | 130 |
 autoviml/auto_viml | Automatically builds multiple machine learning models using a single line of code. | 526 |
 kost/memdump | A tool to extract and display the contents of a system's physical memory | 12 |