Scans a given process. Recognizes and dumps a variety of potentially mal...
Scans all running processes. Recognizes and dumps a variety of potential...
Educational, CTF-styled labs for individuals interested in Memory Forensics
AVML - Acquire Volatile Memory for Linux
Dynamic unpacker based on PE-sieve
WinDBG Anti-RootKit Extension
SIFT
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps...
Data Visualization Plugin for IDA Pro
Volatile Artifact Collector collects a snapshot of volatile data from a ...
Allows you to quickly query a Windows machine for RAM artifacts
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for ...
A course on "Digital Forensics" designed and offered in the Computer Sci...
Rip Raw is a small tool to analyse the memory of compromised Linux systems.
C# Implementation of Jared Atkinson's Get-InjectedThread.ps1