YaVol - GUI for Volatility Framework and Yara

Monday, December 21, 2015

This is just another GUI for volatility and yara which could make someone's life easier. It is inteded for Incident responders for quick examination of a memory image. Results are stored in sqlite db for reuse.

1. Installation

Clone repo
  • git clone https://Ft44k@bitbucket.org/Ft44k/yavol.git
  • default forder for yara sigs is /yara_rules

2. Prerequisites

you need to have installed Python (2.7), PyQt4, and sqlite3

Subscribe via e-mail for updates!