@504ensicsLabs

504ENSICS Labs

Digital Forensics & Computer Security Research

  • LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures f…

    C 639 137 GPL-2.0 Updated May 6, 2018
  • Differential Analysis of Malware in Memory

    Python 152 46 GPL-2.0 Updated Apr 16, 2017
  • This is a copy of the Registry Decoder Live repository from Google Code

    Python 7 4 Updated Aug 18, 2015
  • This is a copy of the Registry Decoder repository from Google Code.

    Python 20 9 Updated Aug 18, 2015
  • Discover potential timestamps within the Windows Registry

    Python 15 4 GPL-2.0 Updated Apr 22, 2014