#memory

volatility
volatility

The volatile memory extraction framework.

unicorn
unicorn

Simple tool for using a PowerShell downgrade attack and inject shellcode into memory.

ScareCrow
ScareCrow

Payload creation framework designed around EDR bypass.

mimikittenz
mimikittenz

A post-exploitation powershell tool for extracting juicy info from memory.

Dumpert
Dumpert

LSASS memory dumper using direct system calls and API unhooking.