YaVol - GUI for volatility framework and yara

This is just another GUI for volatility and yara which could make someone's life easier. It is inteded for Incident responders for quick examination of a memory image. Results are stored in sqlite db for reuse.

Screenshots:

1. Installation

Clone repo

git clone https://Ft44k@bitbucket.org/Ft44k/yavol.git
default forder for yara sigs is /yara_rules

1.1 Prerequisites

you need to have installed Python (2.7), PyQt4, and sqlite3

2. Licensing

GPLv3 license, see LICENSE.txt for details.

3. Acknowledgements and Thanks

I would like to thank to my wife for tolerance an patience for my little projects. Also my thanks goes to all people who helped me to overcome the learning curve. I don't know them, but google found them on StackExchange :) Hope I will find some other people here who would like to contribute to make this small utility even better.

Name		Name	Last commit message	Last commit date
Latest commit History 42 Commits
images		images
yara_rules		yara_rules
.gitignore		.gitignore
LICENSE.txt		LICENSE.txt
MainWindow.py		MainWindow.py
MainWindow.pyc		MainWindow.pyc
README.md		README.md
README.text		README.text
dbmodule.py		dbmodule.py
dbmodule.pyc		dbmodule.pyc
resources.py		resources.py
resources.pyc		resources.pyc
resources.qrc		resources.qrc
settingsDlg.py		settingsDlg.py
settingsDlg.pyc		settingsDlg.pyc
volmodule.py		volmodule.py
volmodule.pyc		volmodule.pyc
yarascanDlg.py		yarascanDlg.py
yarascanDlg.pyc		yarascanDlg.pyc
yarascanTreeView.py		yarascanTreeView.py
yarascanTreeView.pyc		yarascanTreeView.pyc
yavol.pyw.py		yavol.pyw.py

License

ulisesrc/yavol

Folders and files

Latest commit

History

Repository files navigation

YaVol - GUI for volatility framework and yara

Screenshots:

1. Installation

1.1 Prerequisites

2. Licensing

3. Acknowledgements and Thanks

About

Resources

License

Stars

Watchers

Forks

Languages