Memflowphysical memory introspection framework
Stars: ✭ 149 (+380.65%)
VolatilityAn advanced memory forensics framework
Stars: ✭ 5,042 (+16164.52%)
MeerkatA collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
Stars: ✭ 284 (+816.13%)
smram parseSystem Management RAM analysis tool
Stars: ✭ 50 (+61.29%)
MalconfscanVolatility plugin for extracts configuration data of known malware
Stars: ✭ 327 (+954.84%)
TimesketchCollaborative forensic timeline analysis
Stars: ✭ 1,795 (+5690.32%)
autoVolatilityRun several volatility plugins at the same time
Stars: ✭ 63 (+103.23%)
quincyImplementation of the DIMVA 2017 publication "Quincy: Detecting Host-Based Code Injection Attacks in Memory Dumps"
Stars: ✭ 66 (+112.9%)
redis-key-dashboardThis tool allows you to do a small analysis of the amount of keys and memory you use in Redis. It allows you to see overlooked keys and notice overuse.
Stars: ✭ 42 (+35.48%)
WELAWELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)
Stars: ✭ 442 (+1325.81%)
v8-inspector-apiA simple node module to access V8 inspector + some tools to export and read the data.
Stars: ✭ 43 (+38.71%)
SiemSIEM Tactics, Techiques, and Procedures
Stars: ✭ 157 (+406.45%)
AppmemDumperForensics triage tool relying on Volatility and Foremost
Stars: ✭ 22 (-29.03%)
memscrimperCode for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"
Stars: ✭ 25 (-19.35%)
knime-rKNIME Interactive R Statistics Integration
Stars: ✭ 18 (-41.94%)
decaylanguagePackage to parse decay files, describe and convert particle decays between digital representations.
Stars: ✭ 34 (+9.68%)
optlibA library for financial options pricing written in Python.
Stars: ✭ 166 (+435.48%)
go-mndMagic number detector for Go.
Stars: ✭ 153 (+393.55%)
memdumpYet another tool for dump mapped memory regions of process, designed to work with Android
Stars: ✭ 16 (-48.39%)
lessramPure PHP implementation of array data structures that use less memory.
Stars: ✭ 20 (-35.48%)
gd.pyAn API Wrapper for Geometry Dash written in Python.
Stars: ✭ 87 (+180.65%)
react-cool-virtual😎 ♻️ A tiny React hook for rendering large datasets like a breeze.
Stars: ✭ 1,031 (+3225.81%)
ad-privileged-auditProvides various Windows Server Active Directory (AD) security-focused reports.
Stars: ✭ 42 (+35.48%)
uacUAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
Stars: ✭ 260 (+738.71%)
poolA generic C memory pool
Stars: ✭ 81 (+161.29%)
GroupDocs.Classification-for-.NETGroupDocs.Classification-for-.NET samples and showcase (text and documents classification and sentiment analysis)
Stars: ✭ 38 (+22.58%)
ingest-fileIngestors extract the contents of mixed unstructured documents into structured (followthemoney) data.
Stars: ✭ 40 (+29.03%)
yara-forensicsSet of Yara rules for finding files using magics headers
Stars: ✭ 115 (+270.97%)
cerberus researchResearch tools for analysing Cerberus banking trojan.
Stars: ✭ 110 (+254.84%)
diepindepthCollection of protocol, memory, and other information for the browser game diepio
Stars: ✭ 39 (+25.81%)
census📜Automated review of open source software projects
Stars: ✭ 111 (+258.06%)
PSTraceTrace ScriptBlock execution for powershell v2
Stars: ✭ 38 (+22.58%)
dmarc-viewerDjango based web-app to visually analyze DMARC aggregate reports
Stars: ✭ 51 (+64.52%)
VesselVioVesselVio is an open-source application for the analysis and visualization of segmented vasculature datasets
Stars: ✭ 45 (+45.16%)
CDIRCDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library
Stars: ✭ 122 (+293.55%)
AwesomeWallpaperAwesomeWallpaper plays videos, shows images and system info on your desktop wallpaper
Stars: ✭ 74 (+138.71%)
cache-benchExplore the impact of virtual memory settings on caching efficiency on Linux systems under memory pressure
Stars: ✭ 25 (-19.35%)
semi-memoryTensorflow Implementation on Paper [ECCV2018]Semi-Supervised Deep Learning with Memory
Stars: ✭ 49 (+58.06%)
appdata-environment-desktopA selection of script and the manual for Privacy International's data interception environment
Stars: ✭ 70 (+125.81%)
mhA memory editor for iOS/macOS with JavaScript support
Stars: ✭ 35 (+12.9%)
vminspectTools for inspecting disk images
Stars: ✭ 25 (-19.35%)
UnitorTool for analysing and disassembling any unity game. Supports both mono and il2cpp.
Stars: ✭ 31 (+0%)
MindMaps#ThreatHunting #DFIR #Malware #Detection Mind Maps
Stars: ✭ 224 (+622.58%)
CHKVConsistent Hashing based Key-Value Memory Storage
Stars: ✭ 20 (-35.48%)
Roassal2Agile Visualization Engine for Pharo and VisualWorks
Stars: ✭ 23 (-25.81%)
traffic analyserRetrieve useful information from apache/nginx access logs to help troubleshoot traffic related problems
Stars: ✭ 44 (+41.94%)
dnslogMinimalistic DNS logging tool
Stars: ✭ 40 (+29.03%)
btrfscueRecover files from damaged BTRFS filesystems
Stars: ✭ 28 (-9.68%)
INDXRipperCarve file metadata from NTFS index ($I30) attributes
Stars: ✭ 32 (+3.23%)
DFIR-O365RCPowerShell module for Office 365 and Azure log collection
Stars: ✭ 158 (+409.68%)
iOScanXiOScanX (iOS Application Scanner for OS X) is a Cocoa application for semi-automated iOS app analysis and evaluation
Stars: ✭ 33 (+6.45%)
Bitcoin Analysis-Python Bitcoin is widely used cryptocurrency for digital market. It is decentralised that means it is not own by government or any other company.Transactions are simple and easy as it doesn’t belong to any country.Records data are stored in Blockchain.Bitcoin price is variable and it is widely used so it is important to predict the price of it f…
Stars: ✭ 42 (+35.48%)
glassdoorglassdoor is a modern, autonomous security framework for Android APKs. POC, unmaintained unfortunately.
Stars: ✭ 14 (-54.84%)
character-extractionExtracts character names from a text file and performs analysis of text sentences containing the names.
Stars: ✭ 40 (+29.03%)