volafox Logo

volafox

0
Free
Visit Website

volafox, also known as 'Mac OS X Memory Analysis Toolkit', is a Python 2.x tool developed for memory analysis on Mac OS X systems. It supports a wide range of OS versions from Snow Leopard to El Capitan, and provides features such as Kernel Symbol List overlay data, memory image analysis, and memory image export using tools like rekal. The project repository can be found at: https://github.com/n0fate/volafox

FEATURES

ALTERNATIVES

A Mac OS X forensic utility for ensuring correct forensic procedures during disk imaging.

A tool that uses graph theory to reveal hidden relationships and attack paths in an Active Directory environment.

Second-order subdomain takeover scanner

IE10Analyzer can parse and recover records from WebCacheV01.dat, providing detailed information and conversion capabilities.

Forensic imaging program with full hash authentication and various acquisition options.

Windows anti-forensics USB monitoring tool with the ability to shutdown the computer upon detecting the unplugging of a specified USB device.

LiME is a Linux Memory Extractor tool for acquiring volatile memory from Linux and Linux-based devices, including Android, with features like full memory captures and minimal process footprint.

A library to access the Extensible Storage Engine (ESE) Database File (EDB) format used in various Windows applications.