quinta-feira, 27 de agosto de 2020

VolExp - Volatility Explorer


This program allows the user to access a Memory Dump. It can also function as a plugin to the Volatility Framework (https://github.com/volatilityfoundation/volatility). This program functions similarly to Process Explorer/Hacker, but additionally it allows the user access to a Memory Dump (or access the real-time memory on the computer using Memtriage). This program can run from Windows, Linux and MacOS machines, but can only use Windows memory images.

Quick Start
  1. Download the volexp.py file (download the memtriage.py file as well and replace it with your memtriage.py file if you want to use memtriage https://github.com/gleeda/memtriage).
  2. Run as a standalone program or as a plugin to Volatility:
  • As a standalone program:
 python2 volexp
 python2 vol.py -f <memory file path> --profile=<memory profile> volexp

Some Features:
python2 memtriage.py --plugins=volexp
  • Some of the information display will not update in real time (except Processes info(update slowly), real time functions like struct analyzer, PE properties, run real time plugin, etc.).
  • The program also allows to view Loaded dll's, open handles and network connections of each process (Access to a dll's properties is also optional).
  • To present more information of a process, Double-Click (or Left-Click and select Properties) to bring up an information window.
  • Or present more information on any PE.
  • The program allows the user to view the files in the Memory Dump as well as their information. Additionally, it allows the user to extract those files (HexDump/strings view is also optional).
  • The program supports viewing of the Windows Objects and files's matadata (MFT).
  • The program also support viewing a regview of the memory dump
  • Additionally, the program supports struct analysis. (writing on the memory's struct, running Volatility functions on a struct is available). Example of getting all the load modules inside _EPROCESS struct in another struct analyzer window:
  • The Program is also capable of automatically marking suspicious processes found by another plugin. Example of a running threadmap plugin:
  • View memory use of a process.
  • Manually marking a certain process and adding a sidenote on it.
  • User's actions can be saved on a seperate file for later usage.

get help: https://github.com/memoryforensics1/VolExp/wiki/VolExp-help:






via KitPloit
This article is the property of Tenochtitlan Offensive Security. Verlo Completo --> https://tenochtitlan-sec.blogspot.com

Read more


  1. Pentest Box Tools Download
  2. Nsa Hack Tools Download
  3. Hack Tools For Games
  4. Hak5 Tools
  5. Hacking Tools For Mac
  6. Hacking Tools 2020
  7. Hack Tool Apk
  8. Termux Hacking Tools 2019
  9. Computer Hacker
  10. How To Hack
  11. Pentest Tools Kali Linux
  12. Hacking Tools For Kali Linux
  13. Hackers Toolbox
  14. Pentest Tools Open Source
  15. Pentest Tools Website
  16. Hacker Security Tools
  17. Pentest Tools Windows
  18. Best Hacking Tools 2019
  19. Hack Rom Tools
  20. Pentest Tools Apk
  21. Hack And Tools
  22. Hacking Tools
  23. Pentest Tools Apk
  24. Hacker Tool Kit
  25. Hack Tools For Windows
  26. Hacker Security Tools
  27. Hack Tools For Ubuntu
  28. Pentest Tools Alternative
  29. Pentest Tools Download
  30. Hacking Tools Online
  31. Wifi Hacker Tools For Windows
  32. Underground Hacker Sites
  33. Hacking Tools Download
  34. Hacker Tools Software
  35. Nsa Hack Tools
  36. Hack Tools
  37. Pentest Tools For Ubuntu
  38. Hacking Tools Usb
  39. Hacker Tools For Ios
  40. Easy Hack Tools
  41. Hacking Tools For Windows
  42. Pentest Automation Tools
  43. Pentest Tools Download
  44. Pentest Tools For Mac
  45. Hacking Tools For Windows Free Download
  46. Hacker Tools 2019
  47. Hack Tool Apk No Root
  48. Pentest Tools Alternative
  49. Best Hacking Tools 2020
  50. Hack Tools For Windows
  51. Hack Rom Tools
  52. Hacking Tools For Windows
  53. Pentest Tools List
  54. Hacking Tools Software
  55. Hacking Tools Kit
  56. Hacker Search Tools
  57. Hacker Tools For Ios
  58. Hacking Tools And Software
  59. Hacking Tools For Windows 7
  60. Nsa Hack Tools
  61. Hacking Tools Online
  62. Hackrf Tools
  63. Android Hack Tools Github
  64. Hacking Tools And Software
  65. Hacker Tool Kit
  66. Pentest Tools Windows
  67. How To Make Hacking Tools
  68. Pentest Tools Website Vulnerability
  69. Hacking Tools Hardware
  70. Hacking Tools For Windows
  71. Hacker Tools Linux
  72. Hacking Tools Mac
  73. Hacker Tools For Pc
  74. Hacking Tools Pc
  75. Pentest Tools Apk
  76. Pentest Tools For Windows
  77. Hacker Tools Windows
  78. How To Make Hacking Tools
  79. Hacking Tools For Games
  80. Termux Hacking Tools 2019
  81. Hacking Tools For Beginners
  82. Hacking Tools Kit
  83. Hack Tools
  84. Hackrf Tools
  85. Easy Hack Tools
  86. Hack Tools Mac
  87. Pentest Tools Port Scanner
  88. Usb Pentest Tools
Postado por às

Nenhum comentário:

Postar um comentário

Assinar: Postar comentários (Atom)