Windows Symbol Tables for Volatility 3

This repository is the Windows Symbol Table storage for Volatility 3.

How to Use

$ git clone https://github.com/JPCERTCC/Windows-Symbol-Tables.git
$ cp -R symbols/windows volatility3/volatility3/symbols

Reference

Symbol Table List

ntoskrnl version	GUID-AGE	OS
10.0.17763.379	8b11040a5928757b11390ac78f6b69251	Win10
10.0.17763.437	8cfb49428dc86a330ce257778e0c2f931	Win10
10.0.18326.535	616a94e33a4827b451b0e19c14c037921	Win10
10.0.18326.778	be3e0ff92c7a93433d4a950a037ef6561	Win10
10.0.18362.295	11bc9a513f1140ca359ecdf50f0122c11	Win10
10.0.18362.30	35a038b1f6e2e8caf642111e6ec66f571	Win10
10.0.18362.356	ce7ffb00c20b87500211456b3e905c471	Win10
10.0.18362.418	e0093f3aef15d58168b753c9488a40431	Win10
10.0.18362.476	90f5e1c8bbe1fe1fb8a714305ee06f361	Win10
10.0.18362.592	f3a4f64b6f639a058ad6f33155aca4f61	Win10
10.0.18362.657	84924f606dcfa4bef5c0d97c2668cf181	Win10
10.0.18362.720	2b5d086a9591c3a54729282e8f43bd821	Win10
10.0.18362.836	dca4ad4beeb4746d48f84c0125019e431	Win10
10.0.19041.1052	fc57f1c841c2c3f793d57ac134dc0efa1	Win10
10.0.19041.1110	f526dbb121425697cbbf4fb22502519f1	Win10
10.0.19041.1165	47114209a62f3b9930f6b8998dfd4a991	Win10
10.0.19041.329	bbed7c2955fbe4522aaa23f4b8677ad91	Win10
10.0.19041.388	110a2d89ed7a438feffc84f9cfdd6c001	Win10
10.0.19041.450	1c9875f76c8f0fbf3eb9a9d7c1c274061	Win10
10.0.19041.508	641f55c592201dcc4f59facc72ea54da1	Win10
10.0.19041.572	b16053724b46515388fdea9d0470d02e1	Win10
10.0.19041.630	15b12c74f0e177581b6b27dd4c5022c21	Win10
10.0.19041.685	4ef9a5375f61fe84b7eaef54bf025c0e1	Win10
10.0.19041.746	3d4400784115718818efc898413f36c41	Win10
10.0.19041.804	5278aff86c341677d7d7835c85b7b8441	Win10
10.0.19041.867	3fcc539ff307dd2d9c509206d352b9aa1	Win10
10.0.19041.928	769c521e4833ecf72e21f02bf33691a51	Win10
10.0.19041.985	992a9a48f30ec2c58b01a5934dce2d9c1	Win10
6.1.7601.24540	339e74133576439cbcdf7e0229da37731	Win7
6.3.9600.19913	22597d0b40394e23936f6a24c6c52d5b1	Win8.1
6.3.9600.19939	287e489f93aa4c6d94b9cd1469b7f9de1	Win8.1
6.3.9600.19962	06a508f37b81478e855a3542e272c0841	Win8.1
6.3.9600.19994	1e8593423c574a72be87ea4966e1377b1	Win8.1
6.3.9600.20012	bf4b4160c2cb414e9c4516da1e7b66091	Win8.1
6.3.9600.20040	c78ab9dbffed445096b4dcf7fdd6e5af1	Win8.1
6.3.9600.20065	4dc173cc51ec446e895dc545db61083e1	Win8.1
6.3.9600.20090	dfa4f6552dd34e03b16763d22438d8fa1	Win8.1
10.0.17763.2114	a1e1c9a90091da9805d0eba0470bec851	windows-2019
10.0.14393.4583	517e128f7b7c4ea79491de6b9b9ce1901	windows-2016

Windows symbol tables for Volatility 3

Related tags

Overview

Windows Symbol Tables for Volatility 3

How to Use

Reference

Symbol Table List

Owner

JPCERT Coordination Center

A calculator to test numbers against the collatz conjecture

Pattern Matching for Python 3.7+ in a simple, yet powerful, extensible manner.

A repository of study materials related to Think Python 2nd Edition by Allen B. Downey. More information about the book can be found here: https://greenteapress.com/wp/think-python-2e/

A wide AOI generator tool.

A modern Python build backend

A multi-platform fuzzer for poking at userland binaries and servers

GibMacOS - Py2/py3 script that can download macOS components direct from Apple

a simple proof system I made to learn math without any mistakes

Supply Chain will be a SAAS platfom to provide e-logistic facilites with most optimal

Bots in moderation and a game (for now)

A compiler for ARM, X86, MSP430, xtensa and more implemented in pure Python

eyes is a Public Opinion Mining System focusing on taiwanese forums such as PTT, Dcard.

A carrot-based color palette you didn't know you needed.

PyGo custom language, New but similar language programming

Node editor view image node

Repo to store back end infrastructure for Message in a Bottle

Height 2 LDraw With python

Academic planner application designed for students and counselors.

Demo code for "Logs in distributed systems" webinar

Sudo type me a payload