EricZimmerman / Get-ZimmermanTools
Get all my software
☆153Updated 3 months ago
Alternatives and similar repositories for Get-ZimmermanTools:
Users that are interested in Get-ZimmermanTools are comparing it to the libraries listed below
- Software downloads☆98Updated 3 months ago
- A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …☆159Updated 5 months ago
- A curated list of KAPE-related resources☆166Updated last month
- Windows Forensics Environment Builder☆133Updated 3 months ago
- Command line access to the Registry☆142Updated 3 weeks ago
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆109Updated last year
- A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub☆70Updated last year
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆55Updated 2 months ago
- Documentation repository☆44Updated 7 months ago
- ☆51Updated last month
- A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.☆94Updated 2 years ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆84Updated 2 months ago
- This is a set of tools for doing forensics analysis on Microsoft ESE databases.☆124Updated 3 years ago
- Repository of public reference frameworks for the DFIR community.☆116Updated last year
- Search Index Database Reporter☆106Updated 5 months ago
- Parses $MFT from NTFS file systems☆234Updated last week
- ☆6Updated 6 months ago
- A GeoIP lookup utility utilizing ipinfo.io services.☆87Updated last year
- Scripts to facilitate filtering with Plaso☆124Updated 4 years ago
- Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux☆114Updated this week
- Repository of SentinelOne Deep Visibility queries.☆126Updated 3 years ago
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆210Updated 3 weeks ago
- Consolidation of various resources related to Microsoft Sysmon & sample data/log☆110Updated 3 years ago
- The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportu…☆207Updated 2 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆280Updated 8 months ago
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆45Updated 6 months ago
- C# based evtx parser with lots of extras☆300Updated this week
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆123Updated 3 weeks ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆596Updated last month
- Recycle bin artifact parser☆47Updated 2 months ago