Orochi Logo

Orochi

0
Free
Visit Website

Orochi is an open source framework for collaborative forensic memory dump analysis. Using Orochi, you and your collaborators can easily organize your memory dumps and analyze them all at the same time. Orochi architecture uses Volatility 3, saves Volatility results in ElasticSearch, distributes loads among nodes using Dask, uses Django as frontend, uses Postgresql to save users and analysis metadata such as status and errors, uses MailHog to manage the users registration emails, and uses Redis for caching.

FEATURES

ALTERNATIVES

Free software for extracting Microsoft cabinet files, supporting all features and formats of Microsoft cabinet files and Windows CE installation files.

Web interface for the Volatility Memory Forensics Framework

Second-order subdomain takeover scanner

A Kernel fuzzer focusing on race bugs

A tool with advanced filtering capabilities for analyzing events based on time, path, weekday, and date.

wxHexEditor is a free hex editor / disk editor with various data manipulation operations and visualization functionalities.

MalConfScan is a Volatility plugin for extracting configuration data of known malware and analyzing memory images.

A library and tools to access and analyze APFS file systems