215 Open source projects that are alternatives of or similar to dumproid

UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.

Official Black Hat Arsenal Security Tools Repository

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

FAT filesystems explore, extract, repair, and forensic tool

U-Net for fingerprint denoising

Python script to decode common encoded PowerShell scripts

Tool to sort large collections of files according to common typologies

Recover files from damaged BTRFS filesystems

A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.

Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

This toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices

SIEM Tactics, Techiques, and Procedures

Volatility Explorer Suit

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

Malware Behavior Analyzer

Set of Yara rules for finding files using magics headers

Comae Hibernation File Decompressor

An Incident Response tool to extract console command history and screen output buffer

Awesome hacking is an awesome collection of hacking tools.

Biometric factors allow for secure authentication on the Android platform.

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.

Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.

a useful utility for android app security testing

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Recover files using lists of blocks hashes, bypassing the File System entirely

TCP/IP packet demultiplexer. Download from:

SQBrite is a data recovery tool for SQLite databases

Mobile Revelator

The scalable, auditable and high-performance tamper-evident log project

Video Face Manipulation Detection Through Ensemble of CNNs

#ThreatHunting #DFIR #Malware #Detection Mind Maps

Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers

CoRA Docs

❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

Python 3 Script to parse out iTunes backups

Super timeline all the things

No description or website provided.

Retrieve Intel AMT's Audit Log from a Linux machine without knowing the admin user's password.

Minimalistic DNS logging tool

A FUSE module to mount captured network data

Open Source SIEM (Security Information and Event Management system).

Powerful checksum generator!

PowerShell module for Office 365 and Azure log collection

Tracking history of USB events on GNU/Linux

Various analysis of Android stalkerware

Web browser forensics for Google Chrome/Chromium

LIFARS Networking Security GNU/Linux distro

operative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.

A repository for scripting a mobile attack toolchain

A single file container/archive that can be reconstructed even after total loss of file system structures

Automation and Scaling of Digital Forensics Tools

Ingestors extract the contents of mixed unstructured documents into structured (followthemoney) data.

Swiss army knife for identifying and fingerprinting Android devices.

Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack

Awesome Forensics Resources. Almost 300 open source forensics tools, and 600 blog posts about forensics.

OSINT Swiss Army Knife

The entire walkthrough of all my resolved TryHackMe rooms