MalConfScan Logo

MalConfScan

0
Free
Updated 11 March 2025
Digital Forensics
Malware Analysis
Memory Forensics
Malware Detection
String Analysis
Visit Website

MalConfScan is a Volatility plugin that extracts configuration data of known malware, searches for malware in memory images, and dumps configuration data. It also has a function to list strings to which malicious code refers. Supported malware families include Ursnif, Emotet, Smoke Loader, PoisonIvy, CobaltStrike, and many others. Additionally, it can dump decoded strings or DGA domains. MalConfScan also provides additional analysis by listing strings to which malicious code refers and decoding configuration data usually encoded by malware.

FEATURES

EXPLORE BY TAGS

Malware Analysis

Memory Forensics

Malware Detection

String Analysis

SIMILAR TOOLS

MFT_Browser Logo
MFT_Browser

Recreates the File/Directory tree structure from an extracted $MFT file with detailed record mapping and analysis capabilities.

Free
Digital Forensics
Timesketch Logo
Timesketch

A collaborative forensic timeline analysis tool for organizing and analyzing data with rich annotations and comments.

Free
Digital Forensics
DFTimewolf Logo
DFTimewolf

A framework for orchestrating forensic collection, processing, and data export.

Free
Digital Forensics
Crashwalk Logo
Crashwalk

A tool for triaging crash files with various output formats and debugging engine options.

Free
Digital Forensics
xmlstarlet Logo
xmlstarlet

XMLStarlet offers a suite of command line utilities for manipulating and querying XML documents.

Free
Digital Forensics
GitTools Logo
GitTools

A collection of tools for extracting and analyzing information from .git repositories

Free
Digital Forensics
macMRU-Parser Logo
macMRU-Parser

Python script to parse macOS MRU plist files into human-friendly format

Free
Digital Forensics
Diffy (DEPRECATED) Logo
Diffy (DEPRECATED)

Diffy is a digital forensics and incident response (DFIR) tool developed by Netflix's Security Intelligence and Response Team (SIRT) for scoping compromises across cloud instances.

Free
Digital Forensics
imobax Logo
imobax

iOS Mobile Backup Xtractor tool for extracting iOS backups.

Free
Digital Forensics

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy