C Aff4An AFF4 C++ implementation.
Stars: ✭ 126 (-89.76%)
ForensicsToolsA list of free and open forensics analysis tools and other resources
Stars: ✭ 392 (-68.16%)
LinuxforensicsEverything related to Linux Forensics
Stars: ✭ 189 (-84.65%)
MemlabsEducational, CTF-styled labs for individuals interested in Memory Forensics
Stars: ✭ 696 (-43.46%)
Forensic ToolsA collection of tools for forensic analysis
Stars: ✭ 204 (-83.43%)
INDXRipperCarve file metadata from NTFS index ($I30) attributes
Stars: ✭ 32 (-97.4%)
pyaff4The Python implementation of the AFF4 standard.
Stars: ✭ 37 (-96.99%)
SiftSIFT
Stars: ✭ 355 (-71.16%)
GensumPowerful checksum generator!
Stars: ✭ 12 (-99.03%)
Mac aptmacOS Artifact Parsing Tool
Stars: ✭ 329 (-73.27%)
PigA Linux packet crafting tool.
Stars: ✭ 384 (-68.81%)
Artifacts📇 Digital Forensics Artifact Repository (forensicanalysis edition)
Stars: ✭ 21 (-98.29%)
ThehivedocsDocumentation of TheHive
Stars: ✭ 353 (-71.32%)
AutotimelinerAutomagically extract forensic timeline from volatile memory dump
Stars: ✭ 54 (-95.61%)
UsbripTracking history of USB events on GNU/Linux
Stars: ✭ 903 (-26.65%)
HackdroidAndroid Apps, Roms and Platforms for Pentesting
Stars: ✭ 310 (-74.82%)
MeerkatA collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
Stars: ✭ 284 (-76.93%)
MetaforgeAn OSINT Metadata analyzing tool that filters through tags and creates reports
Stars: ✭ 63 (-94.88%)
MftecmdParses $MFT from NTFS file systems
Stars: ✭ 45 (-96.34%)
RecuperabitA tool for forensic file system reconstruction.
Stars: ✭ 280 (-77.25%)
wipedicksWipe files and drives securely with randoms ASCII dicks
Stars: ✭ 94 (-92.36%)
CortexCortex: a Powerful Observable Analysis and Active Response Engine
Stars: ✭ 676 (-45.09%)
bits parserExtract BITS jobs from QMGR queue and store them as CSV records
Stars: ✭ 64 (-94.8%)
GosintOSINT Swiss Army Knife
Stars: ✭ 401 (-67.42%)
PcapfsA FUSE module to mount captured network data
Stars: ✭ 17 (-98.62%)
Infosec referenceAn Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Stars: ✭ 4,162 (+238.1%)
Pcapxray❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
Stars: ✭ 1,096 (-10.97%)
Swap digger swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.
Stars: ✭ 354 (-71.24%)
Tr1pdtamper resistant audit log
Stars: ✭ 13 (-98.94%)
Docker ExplorerA tool to help forensicate offline docker acquisitions
Stars: ✭ 328 (-73.35%)
Icpr2020dfdcVideo Face Manipulation Detection Through Ensemble of CNNs
Stars: ✭ 64 (-94.8%)
MalconfscanVolatility plugin for extracts configuration data of known malware
Stars: ✭ 327 (-73.44%)
KauditAlcide Kubernetes Audit Log Analyzer - Alcide kAudit
Stars: ✭ 23 (-98.13%)
Ir RescueA Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.
Stars: ✭ 311 (-74.74%)
PlasoSuper timeline all the things
Stars: ✭ 1,055 (-14.3%)
ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+270.51%)
WhatfilesLog what files are accessed by any Linux process
Stars: ✭ 800 (-35.01%)
MrMobile Revelator
Stars: ✭ 69 (-94.39%)
rair-coreRAIR: RAdare In Rust
Stars: ✭ 63 (-94.88%)
KuiperDigital Forensics Investigation Platform
Stars: ✭ 257 (-79.12%)
hotolotidocumentation, scripts, tools related to Zena Forensics (http://blog.digital-forensics.it)
Stars: ✭ 66 (-94.64%)
Amt ForensicsRetrieve Intel AMT's Audit Log from a Linux machine without knowing the admin user's password.
Stars: ✭ 37 (-96.99%)
WiFi-ProjectPre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️
Stars: ✭ 22 (-98.21%)
HindsightWeb browser forensics for Google Chrome/Chromium
Stars: ✭ 589 (-52.15%)
Dfw1n OsintAustralian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers
Stars: ✭ 63 (-94.88%)
dcflddEnhanced version of dd for forensics and security
Stars: ✭ 27 (-97.81%)
Firefed🕵️ A tool for Firefox profile analysis, data extraction, forensics and hardening
Stars: ✭ 37 (-96.99%)
DiffyDiffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.
Stars: ✭ 555 (-54.91%)
ImageSplicingDetectionIlluminant inconsistencies for image splicing detection in forensics
Stars: ✭ 36 (-97.08%)
git-forensics-pluginJenkins plug-in that mines and analyzes data from a Git repository
Stars: ✭ 19 (-98.46%)
Operative Frameworkoperative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.
Stars: ✭ 511 (-58.49%)
lsrootkitRootkit Detector for UNIX
Stars: ✭ 53 (-95.69%)
sift-saltstackSalt States for Configuring the SIFT Workstation
Stars: ✭ 82 (-93.34%)
BeagleBeagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
Stars: ✭ 976 (-20.71%)
SeqboxA single file container/archive that can be reconstructed even after total loss of file system structures
Stars: ✭ 480 (-61.01%)
bootcode parserA boot record parser that identifies known good signatures for MBR, VBR and IPL.
Stars: ✭ 91 (-92.61%)