volatility3

Memory forensic tool

Extracts digital artifacts from volatile memory samples

Volatility 3.0 development

GitHub
3k stars
57 watching
472 forks
Language: Python
last commit: 3 months ago
Linked from 2 awesome lists

digital-investigationforensicsincident-responsemalwarememorypythonramvolatilityvolatility-framework

Screenshot of volatilityfoundation/volatility3 website

volatilityfoundation.org/

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
volatilityfoundation/volatility A toolset for extracting digital artifacts from volatile memory samples. 7,412
volatilityfoundation/profiles These zip files provide custom configurations for analyzing Linux and Mac OS X systems using the Volatility framework. 319
bashtage/arch Provides tools and models for analyzing financial time series and detecting patterns in volatility. 1,342
kevthehermit/volutility A web-based tool for analyzing memory dumps using the Volatility framework. 381
carlospolop/autovolatility A tool for running multiple volatility plugins simultaneously to analyze and extract data from memory dumps. 110
forensicxlab/volatility3_plugins A collection of plugins for analyzing digital forensic data from various sources 22
mkorman90/volatilitybot Automates memory analysis of malware samples and memory dumps by extracting binaries, injections, strings, and analyzing code using heuristics and YARA/Clam AV scanners. 264
gleeda/memtriage Analyze Windows machine RAM artifacts using Winpmem and Volatility 218
volatilityfoundation/dwarf2json Converts ELF/DWARF symbol and type information into Volatility3 intermediate JSON output 108
jameshabben/evolve A web interface for analyzing memory dumps using the Volatility framework, providing an interactive and collaborative environment for forensic analysis. 259
monnappa22/hollowfind A Volatility plugin to detect hollowing techniques used in process analysis 131
citronneur/volatility-wnf Tools for analyzing Windows Notification Facilities and related data 15
kd8bny/limeaide Automates the process of remotely dumping RAM and creating volatility profiles on Linux clients. 161
jasonstrimpel/volatility-trading Provides a set of volatility estimators and tools for analyzing options trading data 1,596
0xjcn/damn-vulnerable-defi-v3-ctf A DeFi protocol with intentional vulnerabilities for testing and learning secure smart contract development 25