Friday, August 28, 2020

VolExp - Volatility Explorer


This program allows the user to access a Memory Dump. It can also function as a plugin to the Volatility Framework (https://github.com/volatilityfoundation/volatility). This program functions similarly to Process Explorer/Hacker, but additionally it allows the user access to a Memory Dump (or access the real-time memory on the computer using Memtriage). This program can run from Windows, Linux and MacOS machines, but can only use Windows memory images.

Quick Start
  1. Download the volexp.py file (download the memtriage.py file as well and replace it with your memtriage.py file if you want to use memtriage https://github.com/gleeda/memtriage).
  2. Run as a standalone program or as a plugin to Volatility:
  • As a standalone program:
 python2 volexp
 python2 vol.py -f <memory file path> --profile=<memory profile> volexp

Some Features:
python2 memtriage.py --plugins=volexp
  • Some of the information display will not update in real time (except Processes info(update slowly), real time functions like struct analyzer, PE properties, run real time plugin, etc.).
  • The program also allows to view Loaded dll's, open handles and network connections of each process (Access to a dll's properties is also optional).
  • To present more information of a process, Double-Click (or Left-Click and select Properties) to bring up an information window.
  • Or present more information on any PE.
  • The program allows the user to view the files in the Memory Dump as well as their information. Additionally, it allows the user to extract those files (HexDump/strings view is also optional).
  • The program supports viewing of the Windows Objects and files's matadata (MFT).
  • The program also support viewing a regview of the memory dump
  • Additionally, the program supports struct analysis. (writing on the memory's struct, running Volatility functions on a struct is available). Example of getting all the load modules inside _EPROCESS struct in another struct analyzer window:
  • The Program is also capable of automatically marking suspicious processes found by another plugin. Example of a running threadmap plugin:
  • View memory use of a process.
  • Manually marking a certain process and adding a sidenote on it.
  • User's actions can be saved on a seperate file for later usage.

get help: https://github.com/memoryforensics1/VolExp/wiki/VolExp-help:






via KitPloit
This article is the property of Tenochtitlan Offensive Security. Verlo Completo --> https://tenochtitlan-sec.blogspot.com
Continue reading
  1. Easy Hack Tools
  2. Pentest Tools For Windows
  3. Hackers Toolbox
  4. Hacking Tools Mac
  5. Nsa Hacker Tools
  6. How To Make Hacking Tools
  7. Hack Tools Github
  8. Hack Tools For Ubuntu
  9. Hacker Security Tools
  10. Hacking Tools For Beginners
  11. Pentest Tools Online
  12. Hackrf Tools
  13. Pentest Tools For Mac
  14. Pentest Box Tools Download
  15. Tools For Hacker
  16. Hacker Tool Kit
  17. Termux Hacking Tools 2019
  18. Nsa Hack Tools Download
  19. Pentest Tools Open Source
  20. Black Hat Hacker Tools
  21. Github Hacking Tools
  22. Hacker Tools
  23. Hacking Tools Pc
  24. Hacking Tools Online
  25. Hacking Tools Mac
  26. Black Hat Hacker Tools
  27. Hacking Tools Hardware
  28. Hacking Tools Github
  29. Hacking Tools Download
  30. Black Hat Hacker Tools
  31. Hack App
  32. Hacking Tools Github
  33. Pentest Tools Windows
  34. Hack Tools Online
  35. Hacking Apps
  36. Hacker Tools Online
  37. Pentest Tools For Windows
  38. Hacking Tools Mac
  39. Hacker Tools Online
  40. Hacker Tools Windows
  41. Pentest Tools Windows
  42. Hacking Tools
  43. Best Pentesting Tools 2018
  44. Pentest Tools
  45. Wifi Hacker Tools For Windows
  46. Hacker Hardware Tools
  47. Nsa Hack Tools Download
  48. Hack Tools Github
  49. Pentest Tools Subdomain
  50. Hacking Tools Kit
  51. World No 1 Hacker Software
  52. Hack Tools
  53. Hacking Tools 2019
  54. Hack Tools
  55. Hack Tools Mac
  56. Tools For Hacker
  57. Hacking Tools And Software
  58. Hacker Tool Kit
  59. Hacker Tools Online
  60. Blackhat Hacker Tools
  61. Tools For Hacker
  62. What Is Hacking Tools
  63. Pentest Tools Website Vulnerability
  64. Pentest Tools Kali Linux
  65. Hacking Tools Pc
  66. Free Pentest Tools For Windows
  67. Pentest Tools Website Vulnerability
  68. Hacker Tool Kit
  69. Hacker Tools List
  70. Pentest Tools Port Scanner
  71. Hack Tools Mac
  72. Pentest Tools Website Vulnerability
  73. Hacking Tools Name
  74. Pentest Tools Website Vulnerability
  75. Hacker Tools Apk Download
  76. Hacking App
  77. Hack Tools
  78. Hacker Security Tools
  79. Hack Tools Github
  80. Pentest Tools Open Source
  81. Top Pentest Tools
  82. Pentest Reporting Tools
  83. Hack Tools For Windows
  84. Hacker Tools 2020
  85. Pentest Tools Bluekeep
  86. Pentest Tools For Android
  87. Hacking Tools Online
  88. Underground Hacker Sites
  89. Ethical Hacker Tools
  90. How To Make Hacking Tools
  91. Hacker Tools Apk
  92. Hacker Tools For Pc
  93. Hacker Tools
  94. Hacker Tools Github
  95. Hacker
  96. Hacking Tools Github
  97. Hack Tools For Mac
  98. Pentest Tools Alternative
  99. Hack Tools 2019
  100. Hack Tool Apk
  101. Hack Tools 2019
  102. Hack Tools 2019
  103. Hackers Toolbox
  104. Hacker Tools Github
  105. Hacker Tools For Pc
  106. Hack Tools Download
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)