Tool to extract contents from the memory of Windows systems.
-
Updated
Jul 4, 2023 - C++
#
memory-forensics
Here are 4 public repositories matching this topic...
Virtual Machine Introspection (VMI) for memory forensics and machine-learning.
-
Updated
Sep 30, 2024 - C++
WinDBG Anti-RootKit Extension
windows
c-plus-plus
visual-studio
malware
driver
kernel-mode
crash-dump
windbg
malware-analysis
windbg-extension
malware-research
forensic-analysis
debugging-tool
memory-forensics
anomaly-detection
anti-rootkit
wdbgark
user-mode
sww
swwwolf
-
Updated
Jul 29, 2020 - C++
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
scans
anti-malware
malware-analysis
pe-format
hooking
pe-analyzer
memory-forensics
pe-dumper
libpeconv
process-analyzer
pe-sieve
-
Updated
Nov 3, 2024 - C++
Improve this page
Add a description, image, and links to the memory-forensics topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the memory-forensics topic, visit your repo's landing page and select "manage topics."