YaVol - GUI for Volatility Framework and Yara

This is just another GUI for volatility and yara which could make someone's life easier. It is inteded for Incident responders for quick examination of a memory image. Results are stored in sqlite db for reuse.

1. Installation

Clone repo
  • git clone https://Ft44k@bitbucket.org/Ft44k/yavol.git
  • default forder for yara sigs is /yara_rules

2. Prerequisites

you need to have installed Python (2.7), PyQt4, and sqlite3

Disqus Comments