EricZimmerman / Get-ZimmermanTools
Get all my software
☆153Updated 2 months ago
Alternatives and similar repositories for Get-ZimmermanTools:
Users that are interested in Get-ZimmermanTools are comparing it to the libraries listed below
- Software downloads☆97Updated 2 months ago
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆55Updated last month
- A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …☆155Updated 4 months ago
- Documentation repository☆44Updated 7 months ago
- A curated list of KAPE-related resources☆164Updated last week
- ☆49Updated 3 weeks ago
- Command line access to the Registry☆138Updated 2 months ago
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆108Updated last year
- Windows Forensics Environment Builder☆131Updated 2 months ago
- Scripts to facilitate filtering with Plaso☆124Updated 4 years ago
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆45Updated 6 months ago
- A GeoIP lookup utility utilizing ipinfo.io services.☆86Updated last year
- Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux☆114Updated this week
- A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.☆91Updated 2 years ago
- ☆6Updated 5 months ago
- Search Index Database Reporter☆104Updated 4 months ago
- A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub☆68Updated last year
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆84Updated last month
- ☆67Updated 3 months ago
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆115Updated this week
- The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportu…☆206Updated last month
- This is a set of tools for doing forensics analysis on Microsoft ESE databases.☆124Updated 3 years ago
- Parses $MFT from NTFS file systems☆232Updated 2 weeks ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆52Updated last year
- Repository of public reference frameworks for the DFIR community.☆115Updated last year
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆279Updated 7 months ago
- OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…☆193Updated last month
- A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts☆59Updated 4 months ago
- Real-time Response scripts and schema☆110Updated last year
- Consolidation of various resources related to Microsoft Sysmon & sample data/log☆109Updated 3 years ago