volatility @volatility
Official account of the Volatility Memory Analysis Project and Windows Malware and Memory Forensics Training. https://t.co/A4TZ1FOjpg github.com/volatilityfoun… Joined August 2008-
Tweets4K
-
Followers23K
-
Following10
-
Likes205
.@volatility New Release: #volatility3 v2.28.0 - visit github.com/volatilityfoun… for details and downloads. #memoryforensics #dfir
I am excited to announce that I will be speaking at @bsidesnash on May 15th. Be sure to attend to see all the latest @volatility 3 plugins against the most sophisticated and devastating malware from the wild!
Memory-only malware leaves no trace on the file system & is commonly used by threat actors ranging from criminal organizations to ransomware operators to APTs. In our @volatility 3 training, students gain deep hands on experience analyzing such threats: memoryanalysis.net/courses-malwar…
We have announced the winners of the 2025 @volatility #PluginContest! And the First Place is: Daniel Baier for XFRM Inspector Read the full Contest Results in our blog post: volatilityfoundation.org/the-2025-volat… Congrats to all winners & thank you to all participants! #DFIR #memoryforensics
The 2025 @volatility #PluginContest review is complete! We received 8 submissions from 7 different countries that included 20 plugins! We will be highlighting each #Contender & the winners will be announced on Friday! #DFIR #memoryforensics
The annual @volatility #PluginContest continues to highlight how #memoryforensics researchers are innovating + contributing to #Volatility3! Special thanks to the core developers & previous winners who helped review this year's submissions!
We are excited to announce the 2025 @volatility #PluginContest First Place winner is: Daniel Baier for XRFM Inspector See the full Contest Results: volatilityfoundation.org/the-2025-volat… Congrats to all winners & thank you to all participants! #DFIR #memoryforensics
The 2025 @volatility #PluginContest review is complete! We received 8 submissions from 7 different countries that included 20 plugins! We will be highlighting each #Contender & the winners will be announced on Friday! #DFIR #memoryforensics
We will announce the winners of the 2025 @volatility #PluginContest winners tomorrow, Friday, Mar 6, so stay tuned! #DFIR #memoryforensics #Volatility3
The 2025 @volatility #PluginContest review is complete! We received 8 submissions from 7 different countries that included 20 plugins! We will be highlighting each #Contender & the winners will be announced on Friday! #DFIR #memoryforensics
.@volatility #PluginContest #Contender Théo Letailleur: Journald Extractor automates extraction of Linux journal files cached in memory, along with analysis via the open-source go-journalctl tool to obtain parsed versions of these files from memory. #DFIR #memoryforensics
The 2025 @volatility #PluginContest review is complete! We received 8 submissions from 7 different countries that included 20 plugins! We will be highlighting each #Contender & the winners will be announced on Friday! #DFIR #memoryforensics
.@volatility #PluginContest #Contender Kyrre Wahl Kongsgård: Arrow & Parquet Renderers allows #Volatility3 plugin output to be written via the Arrow + Parquet renderers, enabling the output to be integrated into tools for modern data analysis workflows. #DFIR #memoryforensics
.@volatility #PluginContest #Contender Diyar Saadi Ali: This submission includes a suite of detection plugins & tools to identify suspicious processes + artifacts within the memory sample of a suspected system using a variety of heuristics & indicators. #DFIR #memoryforensics
.@volatility #PluginContest #Contender Kartik Iyer: APCWatch & MalAPC together provide the capability to identify & analyze APC injection attacks in Windows memory forensics, one of the most sophisticated code injection techniques employed by modern malware #DFIR #memoryforensics
.@volatility #PluginContest #Contender Thomas Clark: The EA App Artifacts, MetaHorizonWorlds & SteamArtifacts plugins help investigators with incidents involving popular gaming platforms by scanning memory for relevant processes and artifacts. #DFIR #memoryforensics
.@volatility #PluginContest #Contender Daniel Baier: XRFM Inspector includes a suite of #Volatility3 plugins that perform the extraction of VPN (IPSEC) related artifacts and cryptographic keys from the XFRM Linux subsystem. #DFIR #memoryforensics
.@volatility #PluginContest #Contender Jan-Hendrik Lang: MemoryInvestigator specializes in Windows memory analysis & integrates #Volatility3 and LLMs, including Retrieval-Augmented Generation (RAG) and an enhanced Tree-of-Table Algorithm #DFIR #memoryforensics
.@volatility #PluginContest #Contender Devarjya Purkayastha: PEScan provides an alternative method for analyzing PE files in a memory sample, assigning a threat score to each memory region that contains a PE file & summarizing high/critical regions. #DFIR #memoryforensics
.@volatility New Release: #volatility3 v2.27.0 - visit github.com/volatilityfoun… for details and downloads. #memoryforensics #dfir
Kerberos plugin for @volatility allows you to list and extract tickets from memory dump. Another way to track user activity by checking services tickets ! github.com/airbus-cert/vo…
We’ve now made our @DEATHCon2025 workshop Building Custom Memory Analysis Tools with the Modern Python Data Ecosystem publicly available. The workshop shows how to build custom memory forensics tools on top of @volatility output using @marimo_io, @duckdb, and @IbisData. We start with an introduction to marimo notebooks, DuckDB, and the Ibis dataframe library, then move into incident response workflows where Volatility plugin output is treated as tabular data stored in DuckDB tables and processed and presented interactively in a notebook environment. From there, we build reusable analysis components, show how marimo’s reactive execution model enables a custom interactive environment for YARA development, demonstrate how to process string data contained in memory dumps, and finally show how to create custom interactive visualizations and widgets. All notebooks, files, and accompanying videos are now available to everyone.
And that’s it! The 2025 @volatility #PluginContest is now closed. Stay tuned for winner announcements in the coming weeks! And good luck to all contenders! #memoryforensics #opensource #dfir
Today is the last day to submit entries to the #PluginContest! This is your chance to gain industry-wide visibility for your work, contribute to an important open-source project, and compete for cash prizes! More details below!👇
Florian Roth ⚡️ @cyb3rops
220K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Jake Williams @MalwareJake
149K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
4n6lady @4n6lady
62K Followers 660 Following #DFIR & #BlueTeam | IR & Threat Detection | #OSINT enthusiast | waiting for HL3 | AWS CIRT - my views are my own
Justin Elze @HackingLZ
70K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Thomas Roccia 🤘 @fr0gger_
35K Followers 2K Following AI Security x Threat Intel · Threat Researcher · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @Microsoft @McAfee_Labs
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
Mick Douglas 🇺🇦... @bettersafetynet
32K Followers 575 Following Consultant for InfoSec Innovations | @SANSInstitute Principal Instructor | @IANS_Security Faculty | I like information security. How about you?
Chad Tilbury @chadtilbury
22K Followers 599 Following Digital forensics and incident response. Ex-AFOSI, Mandiant, and CrowdStrike. SANS Institute Fellow and co-author of #FOR500 and #FOR508 courses.
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
ςεяβεяμs - м�... @c3rb3ru5d3d53c
26K Followers 242 Following 💕 Malware Reverse Engineer & Malware Geneticist 💕 #Binlex Developer https://t.co/EKYUS9Itvd 👩💻 She/Her
Mike Felch (Stay Read... @ustayready
17K Followers 2K Following Offensive @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | Fighter for truth | K1HAQ
Jiří Vinopal @vinopaljiri
10K Followers 562 Following Threat Researcher at Check Point @_CPResearch_ All opinions expressed here are mine only. https://t.co/iWvwWF1AnN
Will @BushidoToken
38K Followers 3K Following Senior Threat Intel Advisor @TeamCymru | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | Co-founder @BSidesBournemth | @darknetdiaries #126: REvil
hasherezade @hasherezade
90K Followers 952 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
Matthew @embee_research
14K Followers 2K Following Security Researcher, Creating and Sharing Educational Content.
Eric Capuano - Bsky: ... @eric_capuano
11K Followers 3K Following Co-Founder @recon_infosec | SANS DFIR Instructor | IANS Faculty | https://t.co/yUXCSu2Yso | ⬡ ❤ @shortxstack
Heather Mahalik Barnh... @HeatherMahalik
23K Followers 1K Following DFIR, Faculty Fellow & author, #FOR585 #FOR500, wife, mama, researcher, USAF. Trust but validate. Thoughts are mine.
A.fantasy3733 @fantasy373945
0 Followers 26 Following
Ziggy Ziggurat @ZigguratZi
10 Followers 380 Following
Max @Max33307
0 Followers 28 Following
Jordan @pghsocanalyst
0 Followers 99 Following -Recent Cybersecurity Masters Graduate | -Early Career Cybersecurity Associate
X @X6z4d
0 Followers 118 Following
marco @marco97392446
0 Followers 264 Following
SigmaVoid @SigmaVoid19103
0 Followers 76 Following
7up4 @7up47
0 Followers 169 Following
Cyber Safety Guy @CyberSafetyGuy_
4 Followers 117 Following Child Online Safety Advocate, RAFP Veteran, Unit 42, Mental Health Awareness champion (C-PTSD) Rugby, F1, cycling and painting warhammer figures.
Donkey @Donkey315223
0 Followers 21 Following
Ben Duncan @svcgh0st
6 Followers 143 Following
Manaf Mohammed @ManafMohammed01
439 Followers 318 Following Threat Detection Engineer/Incident Responder @COGNNA
NIMA NIKJOO @N_Nikjoo
1K Followers 1K Following Security consultant, Reverse engineer, Exploit Developer. Ex-Political-Security (IRGC & MOIS) prisoner in the Islamic Republic Regime.
Dominic Dal Cerro @InfoSecDom
6 Followers 54 Following
Promter @Promterkuon
0 Followers 97 Following
SpelledIcup @SpelledIcup
2 Followers 39 Following
Jolene Hsu @hsu_jolene
0 Followers 17 Following
buddy0102 @buddy0102146423
0 Followers 32 Following
ZeroDay Brief @ZeroDay_Brief
2 Followers 24 Following ZeroDay Brief delivers concise, deep-dive cybersecurity intelligence for the professional who patches before the news breaks.
Ignacio Parladé @iparlade
141 Followers 580 Following
Zimo @joer273
137 Followers 2K Following
0xDbg @0x_dbg
8 Followers 828 Following
Doron🇮🇱 @Doron1995
17 Followers 141 Following
Captureflagsnotfeels @capture_flags
3 Followers 256 Following Hackers Gonna Hack | Hacker Friend | SecOps | Nerd
Federico Fantini @fede_fantini_99
1 Followers 97 Following Threat Intelligence Analyst and Malware Analyst | MSc in Computer Science | Self-hoeter
xfil @XFILSec
1 Followers 37 Following XFIL Security Solutions, LLC is a boutique cybersecurity consulting firm.
SecMage @sec_mage_1337
0 Followers 136 Following
subhan @cybercontrol3
0 Followers 37 Following
Donnachadha @Donnachadh50248
0 Followers 6 Following
Tachion @tachion23
1 Followers 111 Following
Klemen Vičič @klemenvicic
27 Followers 209 Following
CrossX @RohnDJoger
2 Followers 165 Following
Lysa @lysa69_lysa
3 Followers 336 Following
pete.njug @NjugPete
53 Followers 2K Following | https://t.co/nU0JfcWk17 | https://t.co/vDy81j8HZw | https://t.co/okiX3hb3lt | https://t.co/UomniTayB6 YT-#MathInMinutes
Belk0ruh @Belk0ruh
1 Followers 66 Following
Luvy @Luvy9679
0 Followers 10 Following
Reput.io @reput_io
0 Followers 16 Following Whitelist intelligence for SOC teams. Stop chasing false positives on Cloudflare, Azure, and Googlebot. 200+ sources. Free tier at https://t.co/316luLDYJv
ConnectOurKids @ConnectOurKids
587 Followers 2K Following Pioneering technology to find families, build connections, and create community for children in the foster care system. https://t.co/mi3noBopu0 💙
Volexity @Volexity
8K Followers 7 Following A security firm providing Incident Response, Proactive Threat Assessments, Trusted Advisory, and Threat Intelligence
Brian Maloney @bmmaloney97
3K Followers 623 Following "Distrust and caution are the parents of security." - Benjamin Franklin
NolaSec @NolaSec
445 Followers 193 Following We an open, informal group that meets around good food and drink to discuss current trends and research in computer security.
Golden G. Richard III @nolaforensix
4K Followers 5K Following #Professor, #hacker, systems programmer. Director of the @LSU #Cyber Center and ACL. @lsucyber #C #dfir 🇺🇸 #cybersecurity 🦋 → @nolaforensix.bsky.social
AAron Walters @4tphi
16 Followers 47 Following
Brendan Dolan-Gavitt @moyix
33K Followers 6K Following Building offsec agents: https://t.co/G9EtnC2Gl3 PGP https://t.co/3WXr0RfRkv
Andrew Case @attrc
27K Followers 5K Following @Volatility Core developer, Dir. of Research @Volexity, @lsucyber, The Art Of Memory Forensics Co-Author
Michael Ligh (MHL) @iMHLv2
10K Followers 1K Following CTO @Volexity. Malware Analyst's Cookbook. Art of Memory Forensics. The @Volatility Project. Thoughts are those of my employer, not mine, they made me say it.
Jamie Levy🦉 @gleeda
10K Followers 6K Following @Volatility Core Dev | Art of Memory Forensics co-author | Sr. Director of Adversary Tactics @HuntressLabs | #DFIR enthusiast/trainer | [email protected]Trends for United States
You might like
