bootcode parserA boot record parser that identifies known good signatures for MBR, VBR and IPL.
Stars: ✭ 91 (+102.22%)
CTF-Script-And-Template-Thrift-Shop[180+ scripts] There are a few genuine gems in there. And a lot of spaghetti code. Most of these scripts were for solving CTF's. If you googles something for a CTF and landed here look at the scripts they're all fairly malleable. Sorry for the shitty naming conventions (not really). If you are a recruiter stop. I wont be able to rewrite half thi…
Stars: ✭ 38 (-15.56%)
dumproidAndroid process memory dump tool without ndk.
Stars: ✭ 55 (+22.22%)
Swap digger swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.
Stars: ✭ 354 (+686.67%)
Operative Frameworkoperative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.
Stars: ✭ 511 (+1035.56%)
MacForensicsScripts to process macOS forensic artifacts
Stars: ✭ 118 (+162.22%)
MeerkatA collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
Stars: ✭ 284 (+531.11%)
rair-coreRAIR: RAdare In Rust
Stars: ✭ 63 (+40%)
Vol3xpVolatility Explorer Suit
Stars: ✭ 31 (-31.11%)
Infosec referenceAn Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Stars: ✭ 4,162 (+9148.89%)
lsrootkitRootkit Detector for UNIX
Stars: ✭ 53 (+17.78%)
HindsightWeb browser forensics for Google Chrome/Chromium
Stars: ✭ 589 (+1208.89%)
mini-kaliDocker image for hacking
Stars: ✭ 15 (-66.67%)
Mac aptmacOS Artifact Parsing Tool
Stars: ✭ 329 (+631.11%)
siemstressVery basic CLI SIEM (Security Information and Event Management system).
Stars: ✭ 24 (-46.67%)
GensumPowerful checksum generator!
Stars: ✭ 12 (-73.33%)
LevelDBDumperDumps all of the Key/Value pairs from a LevelDB database
Stars: ✭ 23 (-48.89%)
HackdroidAndroid Apps, Roms and Platforms for Pentesting
Stars: ✭ 310 (+588.89%)
toolsetUseful tools for CTF competitions
Stars: ✭ 31 (-31.11%)
TurbiniaAutomation and Scaling of Digital Forensics Tools
Stars: ✭ 461 (+924.44%)
sqbriteSQBrite is a data recovery tool for SQLite databases
Stars: ✭ 27 (-40%)
WiFi-ProjectPre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️
Stars: ✭ 22 (-51.11%)
PSTraceTrace ScriptBlock execution for powershell v2
Stars: ✭ 38 (-15.56%)
PigA Linux packet crafting tool.
Stars: ✭ 384 (+753.33%)
dcflddEnhanced version of dd for forensics and security
Stars: ✭ 27 (-40%)
MemlabsEducational, CTF-styled labs for individuals interested in Memory Forensics
Stars: ✭ 696 (+1446.67%)
git-forensics-pluginJenkins plug-in that mines and analyzes data from a Git repository
Stars: ✭ 19 (-57.78%)
SiftSIFT
Stars: ✭ 355 (+688.89%)
sift-saltstackSalt States for Configuring the SIFT Workstation
Stars: ✭ 82 (+82.22%)
Tr1pdtamper resistant audit log
Stars: ✭ 13 (-71.11%)
macOS-triagemacOS triage is a python script to collect various macOS logs, artifacts, and other data.
Stars: ✭ 20 (-55.56%)
Docker ExplorerA tool to help forensicate offline docker acquisitions
Stars: ✭ 328 (+628.89%)
ManTraNet-pytorchImplementation of the famous Image Manipulation\Forgery Detector "ManTraNet" in Pytorch
Stars: ✭ 47 (+4.44%)
DiffyDiffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.
Stars: ✭ 555 (+1133.33%)
ir scriptsincident response scripts
Stars: ✭ 17 (-62.22%)
MalconfscanVolatility plugin for extracts configuration data of known malware
Stars: ✭ 327 (+626.67%)
pyaff4The Python implementation of the AFF4 standard.
Stars: ✭ 37 (-17.78%)
Firefed🕵️ A tool for Firefox profile analysis, data extraction, forensics and hardening
Stars: ✭ 37 (-17.78%)
robot hacking manualRobot Hacking Manual (RHM). From robotics to cybersecurity. Papers, notes and writeups from a journey into robot cybersecurity.
Stars: ✭ 169 (+275.56%)
Ir RescueA Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.
Stars: ✭ 311 (+591.11%)
ForensicsToolsA list of free and open forensics analysis tools and other resources
Stars: ✭ 392 (+771.11%)
SeqboxA single file container/archive that can be reconstructed even after total loss of file system structures
Stars: ✭ 480 (+966.67%)
smram parseSystem Management RAM analysis tool
Stars: ✭ 50 (+11.11%)
ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+10035.56%)
WELAWELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)
Stars: ✭ 442 (+882.22%)
KauditAlcide Kubernetes Audit Log Analyzer - Alcide kAudit
Stars: ✭ 23 (-48.89%)
EventTranscriptParserPython based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
Stars: ✭ 22 (-51.11%)
RecuperabitA tool for forensic file system reconstruction.
Stars: ✭ 280 (+522.22%)
UnifiedLogReaderA parser for Unified logging tracev3 files
Stars: ✭ 56 (+24.44%)
Awesome ForensicsAwesome Forensics Resources. Almost 300 open source forensics tools, and 600 blog posts about forensics.
Stars: ✭ 446 (+891.11%)
wipedicksWipe files and drives securely with randoms ASCII dicks
Stars: ✭ 94 (+108.89%)
Amt ForensicsRetrieve Intel AMT's Audit Log from a Linux machine without knowing the admin user's password.
Stars: ✭ 37 (-17.78%)
PcapfsA FUSE module to mount captured network data
Stars: ✭ 17 (-62.22%)
UsbripTracking history of USB events on GNU/Linux
Stars: ✭ 903 (+1906.67%)
GosintOSINT Swiss Army Knife
Stars: ✭ 401 (+791.11%)
bits parserExtract BITS jobs from QMGR queue and store them as CSV records
Stars: ✭ 64 (+42.22%)