VISION-ProcMon Link to heading

VISION-ProcMon is a cross-platform visualization tool. Dedicated to Malware analyst, this tool is usign sigmaJS combined with Rust in order to parse procmon CSV exports, providing an unique, fast and better analysis about malware activities.

Project link : GitHub

VolWeb Link to heading

VolWeb is an opensource web platform interfaced with the volatility3 framework in order to provide centralisation, visualization tools and cooperations between investigators when performing memory forensics.

Project link : GitHub

EWF Parser Link to heading

The Expert Witness Compression Format (EWF), is not so well documented. A rust POC parser is shared to get started into the analysis of EWF images.

Project link : GitHub