volatility
pwntools
Our great sponsors
volatility | pwntools | |
---|---|---|
18 | 8 | |
6,890 | 11,435 | |
1.1% | 1.8% | |
0.0 | 9.1 | |
10 months ago | 6 days ago | |
Python | Python | |
GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
volatility
-
What is the appropriate uncompressed kernel ELF to use with dwarf2json? [ 5.19.0-42-generic #43~22.04.1-Ubuntu ], in order to create generate a custom symbols table to conduct linux memory forensics on Ubuntu 22.04?
I need this to create generate a custom symbols table (using dwarf2json), in order to run a memory dump acquired by Ubuntu 22.04, as Ubuntu 22.04 kernel does not work anymore with volatility 2 (Issue here: volatilityfoundation/volatility#828)
-
How to inspect a Linux machine
Analyzing memory dumps can be hard, especially at the beginning. You might want to use comprehensive Frameworks like volatility.
-
PChunter equivalent on Linux?
volatility - Version 2 Version 3
-
Awesome CTF : Top Learning Resource Labs
Volatility - To investigate memory dumps.
-
Cannot process recent Windows 10 memory dumps in Volatility
https://github.com/volatilityfoundation/volatility/wiki/2.6-Win-Profiles#profile-lists
pwntools
-
Awesome CTF : Top Learning Resource Labs
Pwntools - CTF Framework for writing exploits.
-
Awesome Penetration Testing
Pwntools - Rapid exploit development framework built for use in CTFs.
-
What is Calypso?
One library that I may eventually make which will probably not be an officially maintained library but which I will maintain myself will be a partial or full port of pwntools (a library written in Python for CTFs) to Calypso. For more information on CTFs, atan made a pretty cool post about them:
What are some alternatives?
Metasploit - Metasploit Framework
pwndbg - Exploit Development and Reverse Engineering with GDB Made Easy
one_gadget - The best tool for finding one gadget RCE in libc.so.6
angr - A powerful and user-friendly binary analysis platform!
padding-oracle-attacker - 🔓 CLI tool and library to execute padding oracle attacks easily, with support for concurrent network requests and an elegant UI.
gophish - Open-Source Phishing Toolkit
shellbags - Cross-platform, open-source shellbag parser
RsaCtfTool - RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data
binwalk - Firmware Analysis Tool [Moved to: https://github.com/ReFirmLabs/binwalk]
peda - PEDA - Python Exploit Development Assistance for GDB
bettercap - The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
SQLMap - Automatic SQL injection and database takeover tool