5h4rrK / ReFS-LogFile-010Editor
Created Binary Template for ReFS Logfile for 010Editor
☆16Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for ReFS-LogFile-010Editor
- USB Keyboard Parser Tool is an automated script that can extract HID data from.pcap or.pcapng files.☆14Updated last year
- All files for the InCTF 10th Edition Hardware Badge☆19Updated 4 years ago
- Collection of Linux and macOS Volatility3 Intermediate Symbol Files (ISF), suitable for memory analysis 🔍☆71Updated 2 weeks ago
- Collection of Volatility2 profiles, generated against Linux kernels.☆30Updated 2 weeks ago
- ☆21Updated 3 weeks ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆67Updated last year
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆275Updated 3 months ago
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…☆161Updated 6 months ago
- Regexplore is a Volatility plugin designed to mimic the functionality of the Registry Explorer plugins in EZsuite☆17Updated last year
- A hex viewer for the sleuths!☆16Updated last year
- A curated list of iOS Forensics References, organized by folder with specific references (links to blog post, research paper, articles, a…☆204Updated 11 months ago
- Extract files from Apple devices on Windows, Linux and MacOS. Mostly a wrapper for pymobiledevice3. Creates iTunes-style backups and "adv…☆147Updated last week
- Memory acquisition for Linux that makes sense.☆155Updated 11 months ago
- Python tool to check rootkits in Windows kernel☆165Updated 3 months ago
- The DFRWS 2023 challenge (The Troubled Elevator) takes a deep dive into the domain of Industrial Control Systems (ICS), specifically foc…☆41Updated 6 months ago
- Windows symbol tables for Volatility 3☆72Updated 4 months ago
- a tool used to analyze and monitor in named pipes☆146Updated 2 weeks ago
- Fork repository for CryptoCat's "Binary Exploitation 101 Course" AKA "Practical Buffer Overflow Exploitation"☆12Updated last year
- ☆109Updated this week
- A centralized and enhanced memory analysis platform☆362Updated this week
- Advanced Bash script designed for conducting digital forensics on Linux systems☆131Updated 7 months ago
- DFIR project to collect and analyze events in Google Workspace☆13Updated 7 months ago
- The Volatility Collaborative GUI☆224Updated this week
- A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts☆51Updated last year
- Collection of my volatility3 plugins☆15Updated 2 months ago
- Repository of Yara Rules☆88Updated 3 weeks ago
- Volatility3 Linux profiles☆24Updated last week
- DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based o…☆73Updated 3 weeks ago