jueves, 27 de agosto de 2020

VolExp - Volatility Explorer


This program allows the user to access a Memory Dump. It can also function as a plugin to the Volatility Framework (https://github.com/volatilityfoundation/volatility). This program functions similarly to Process Explorer/Hacker, but additionally it allows the user access to a Memory Dump (or access the real-time memory on the computer using Memtriage). This program can run from Windows, Linux and MacOS machines, but can only use Windows memory images.

Quick Start
  1. Download the volexp.py file (download the memtriage.py file as well and replace it with your memtriage.py file if you want to use memtriage https://github.com/gleeda/memtriage).
  2. Run as a standalone program or as a plugin to Volatility:
  • As a standalone program:
 python2 volexp
 python2 vol.py -f <memory file path> --profile=<memory profile> volexp

Some Features:
python2 memtriage.py --plugins=volexp
  • Some of the information display will not update in real time (except Processes info(update slowly), real time functions like struct analyzer, PE properties, run real time plugin, etc.).
  • The program also allows to view Loaded dll's, open handles and network connections of each process (Access to a dll's properties is also optional).
  • To present more information of a process, Double-Click (or Left-Click and select Properties) to bring up an information window.
  • Or present more information on any PE.
  • The program allows the user to view the files in the Memory Dump as well as their information. Additionally, it allows the user to extract those files (HexDump/strings view is also optional).
  • The program supports viewing of the Windows Objects and files's matadata (MFT).
  • The program also support viewing a regview of the memory dump
  • Additionally, the program supports struct analysis. (writing on the memory's struct, running Volatility functions on a struct is available). Example of getting all the load modules inside _EPROCESS struct in another struct analyzer window:
  • The Program is also capable of automatically marking suspicious processes found by another plugin. Example of a running threadmap plugin:
  • View memory use of a process.
  • Manually marking a certain process and adding a sidenote on it.
  • User's actions can be saved on a seperate file for later usage.

get help: https://github.com/memoryforensics1/VolExp/wiki/VolExp-help:






via KitPloit
This article is the property of Tenochtitlan Offensive Security. Verlo Completo --> https://tenochtitlan-sec.blogspot.com

Read more


  1. Pentest Tools For Ubuntu
  2. Hack Tools For Ubuntu
  3. Pentest Tools Android
  4. Best Pentesting Tools 2018
  5. Game Hacking
  6. Tools For Hacker
  7. Hack Tools
  8. Hack Tool Apk
  9. Hacking Tools Mac
  10. Hacking Tools Name
  11. Pentest Tools For Mac
  12. Best Pentesting Tools 2018
  13. Hacking Tools Online
  14. Hacker Tools For Pc
  15. Hacker Tools Free
  16. Hack Tools
  17. Beginner Hacker Tools
  18. Hacker Search Tools
  19. Pentest Tools For Windows
  20. Pentest Tools Windows
  21. Hack Tools For Pc
  22. Hacker Tools List
  23. Hack And Tools
  24. Wifi Hacker Tools For Windows
  25. Pentest Tools For Windows
  26. Hack Website Online Tool
  27. Hack Tools Pc
  28. Install Pentest Tools Ubuntu
  29. Hacking Tools For Kali Linux
  30. Growth Hacker Tools
  31. How To Install Pentest Tools In Ubuntu
  32. Hacker Tools Github
  33. Pentest Tools Nmap
  34. Hacking Tools For Beginners
  35. Pentest Tools Review
  36. Hacking Tools For Games
  37. Hacker Tools List
  38. Hacking Tools Online
  39. Hack Tools Online
  40. Usb Pentest Tools
  41. Hacking Tools For Windows 7
  42. Hak5 Tools
  43. Hack Tools Mac
  44. Hacker
  45. Hacking Tools For Kali Linux
  46. Hacker Tools For Mac
  47. Github Hacking Tools
  48. Hacks And Tools
  49. Growth Hacker Tools
  50. Pentest Tools Nmap
  51. Hacking Tools Free Download
  52. Pentest Tools List
  53. Hacking Tools 2019
  54. Hacking Tools For Games
  55. Pentest Tools Framework
  56. Hack Tools
  57. Pentest Tools Open Source
  58. Pentest Tools Framework
  59. Hack Tools For Pc
  60. Top Pentest Tools
  61. Hacking Tools For Beginners
  62. Hacker Techniques Tools And Incident Handling
  63. Hacking Tools Windows 10
  64. Hacking Tools Software
  65. Hack Tools Online
  66. Hacker Tools Apk Download
  67. Hacker Techniques Tools And Incident Handling
  68. Hacker Tools Free
  69. Pentest Recon Tools
  70. Hacking Tools Name
  71. Hacker Tools 2020
  72. Hacker Tools List
  73. Hacking Tools Kit
  74. Hacking Tools Kit
  75. Pentest Recon Tools
  76. Hack And Tools
  77. How To Install Pentest Tools In Ubuntu
  78. Hacking Tools For Games
  79. Pentest Reporting Tools
  80. How To Hack
  81. Hackrf Tools
  82. Hacking Tools For Windows 7
  83. Pentest Tools For Android
  84. Usb Pentest Tools
  85. Easy Hack Tools
  86. Pentest Tools Bluekeep
  87. Hacker Tools Linux
  88. Best Hacking Tools 2019
  89. Hacking Tools Download
  90. Pentest Tools Subdomain
  91. Hacker Tools Online
  92. Pentest Tools Kali Linux
  93. Hack Tools Pc
  94. Hak5 Tools
  95. Hacking Tools For Windows Free Download
  96. Pentest Tools List
  97. Pentest Recon Tools
  98. Tools Used For Hacking
  99. Blackhat Hacker Tools
  100. Hack Website Online Tool
  101. Hacker Security Tools
  102. Install Pentest Tools Ubuntu
  103. Black Hat Hacker Tools
  104. Hacking Tools Download
  105. Hack Tool Apk No Root
  106. Hacker Tools Github
  107. Hack Tools Mac
  108. Pentest Tools Apk
  109. Beginner Hacker Tools
  110. Pentest Tools Github
  111. Hacking Tools For Mac
Publicado por en

No hay comentarios:

Publicar un comentario

Suscribirse a: Enviar comentarios (Atom)