inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques

A python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local host.

Utils use to dump android ELF from memory and do some fix including the ELF section header rebuilding

SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.

Implementation of the DIMVA 2017 publication "Quincy: Detecting Host-Based Code Injection Attacks in Memory Dumps"

Advanced diagnostics techniques home

Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"

Yet another tool for dump mapped memory regions of process, designed to work with Android

Frida Python Tool

A simple tool that helps you run common diagnostics steps instead of battling with WinDbg.

a Forensic Script to remotely obtain information from a target machine.

💀 🔥 ❄️ A basic analyzer for memory dumps containing managed code

Incoming APRS messages parser for Yaesu VX-8DR/DE.

Yaesu VX-8DR/DE received APRS beacons map.

Examine .Net memory dumps with F# interactive

a memory dumper in C++17

Small Yet Flexible Logger In C

A little script to extract info out of stack traces

My blog posts repository

A forensics challenge that was available during SigSegV2 CTF (2019)