SkillAgentSearch skills...

VolTool

Tools related to Volatility

GenerateConvertImprove

Install / Use

/learn @tr4c3datr4il/VolTool
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

VolTool

Tools related to Volatility

Compatible with Windows images only

Reference - ForensicxLab

Requirements

  • Volatility 3 Framework
  • Python 3

VolRecon

Automatic parsing Pstree, Cmdline, Netscan, Filescan to files.

Usage

$ chmod +x ./VolRecon.py
$ sudo cp ./VolRecon.py /usr/bin
$ VolRecon.py -h                         
usage: VolRecon.py [-h] -p <PATH> -o <OUTPUT_PATH> [-v] [-csv]

Automatic Parsing Volatility Intels Tool

options:
  -h, --help            show this help message and exit
  -p <PATH>, --path <PATH>
                        Path to the memory image
  -o <OUTPUT_PATH>, --output_path <OUTPUT_PATH>
                        Out files folder
  -v, --verbose         Print plugin's output
  -csv                  Write to csv files

VolAutoDump

Automatic dumping given PID list or offset list, using PsList, Memmap and DumpFiles to dump.

Usage

$ chmod +x ./VolAutoDump.py
$ sudo cp ./VolAutoDump.py /usr/bin
$ VolAutoDump.py -h
usage: VolAutoDump.py [-h] -p <PATH> -o <OUTPUT_PATH> [-v] [-csv] {filedump,procdump,memmap} ...

Automatic Dumping Volatility Tool

positional arguments:
  {filedump,procdump,memmap}
                        Dump Modes

options:
  -h, --help            show this help message and exit
  -p <PATH>, --path <PATH>
                        Path to the memory image
  -o <OUTPUT_PATH>, --output_path <OUTPUT_PATH>
                        Out files folder
  -v, --verbose         Print plugin's output
  -csv                  Write to csv files

VolGraph

Draw Process Tree to png file.

Usage

Install graphiz module first: pip install graphiz

$ chmod +x ./VolGraph.py
$ sudo cp ./VolGraph.py /usr/bin
$ VolGraph.py -h                                                         
usage: VolGraph.py [-h] -p <PATH> -o <OUTPUT_PATH>

Draw Process Tree Tool

options:
  -h, --help            show this help message and exit
  -p <PATH>, --path <PATH>
                        Path to the memory image
  -o <OUTPUT_PATH>, --output_path <OUTPUT_PATH>
                        Out files folder

TO-DO List:

  • Optimize code
  • Update stdout handler
  • Update dumping modes in VolAutoDump
  • Tried to change PrettyPrint's output
  • something fun ...

Related Skills

node-connect

343.1k

Diagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps

frontend-design

90.0k

Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.

openai-whisper-api

343.1k

Transcribe audio via OpenAI Audio Transcriptions API (Whisper).

qqbot-media

343.1k

QQBot 富媒体收发能力。使用 <qqmedia> 标签,系统根据文件扩展名自动识别类型(图片/语音/视频/文件)。

tr4c3datr4il

View profile

View on GitHub
GitHub Stars10
CategoryDevelopment
Updated3mo ago
Forks0
tr4c3datr4il/VolTool

Languages

Python

Security Score

77/100

Audited on Dec 11, 2025

No findings