YAMAGoya: A Real-time Client Monitoring Tool Using Sigma and YARA Rules: https://blogs.jpcert.or.jp/en/2025/11/YAMAGoya.html
In recent years, fileless malware and obfuscation techniques have made it increasingly difficult to detect suspicious activity by scanning files alone. To counter these threats, security researchers and malware analysts actively create and publish detection rules such as Sigma and...
Awesome blogpost on how to dump shm on Linux:
https://isc.sans.edu/diary/How+to+collect+memoryonly+filesystems+on+Linux+systems/32432/
The 13th annual @volatility #PluginContest is OPEN for submissions! This contest is designed to encourage research & development in the field of #memoryanalysis. Every year, contributions from all around the world continue to help build the next generation of #memoryforensics.
Make sure to get your submissions in by 31 December 2025.
More details can be found here: https://volatilityfoundation.org/the-13th-annual-volatility-plugin-contest-is-open/
New Open-Source Tool Spotlight 🚨🚨🚨
Volatility 3 rebuilds memory forensics with a modular, Python-based architecture. It supports multiple operating systems, extends functionality with plugins, and simplifies analysis in incident response scenarios. #DigitalForensics #MemoryAnalysis
🔗 Project link on #GitHub 👉 https://github.com/volatilityfoundation/volatility3
#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity
— ✨
🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴☠️
Hypervisors for Memory Introspection and Reverse Engineering:
https://secret.club/2025/06/02/hypervisors-for-memory-introspection-and-reverse-engineering.html
#reverveengineering #infosec #hypervisor #memoryanalysis #windows #rust
Hypervisors for Memory Introspection and Reverse Engineering:
https://secret.club/2025/06/02/hypervisors-for-memory-introspection-and-reverse-engineering.html
#reverveengineering #infosec #hypervisor #memoryanalysis #windows #rust
@volexity Volcano Server & Volcano One v25.02.21 adds 300 new YARA rules; consistent Bash/ZSH history & sessions from Linux/macOS memory and files; and parses Linux systemd journals, macOS unified logs, and Windows USNs (search + timeline for all).
This release also extracts cmd history from Windows 24H2 RAM; and adds admin options for SAML and S3 bucket watching.
For more information about Volcano Server & Volcano One, contact us: https://volexity.com/company/contact/
@volexity Volcano Server & Volcano One v24.05.08 adds 45 new YARA rules, as well as new IOCs for out-of-tree kernel modules, hidden commands and startup scripts, and many more. This release also adds support for memory from Linux kernels 6.7+ and integrates with Windows Defender Antivirus for bulk scanning.
For more information about Volcano Server & Volcano One, contact us: https://volexity.com/company/contact/
@volexity Volcano Server & Volcano One v24.04.16 adds 75 new YARA rules, as well as new IOCs for hidden home folders, ncat reverse shells, system time changes, and many more. This release also recovers Linux user accounts, preserves dumped files for custom scans, and supports YARA 4.5.0 + PostgreSQL 16.
For more information about Volexity Volcano Server & Volcano One, contact us: https://volexity.com/company/contact/
Tedi Heriyanto
13reak 
volatility
Lenin alevski 🕵️💻
Alexandre Borges
Alexandre Borges
Volexity 
