ForensicRS / forensic-rs

Related projects ⓘ

Alternatives and complementary repositories for forensic-rs

• AbdulRhmanAlfaifi / SDSParser-rs
  NTFS Security Descriptor Stream ($Secure:$SDS) parser
  ☆14Updated last year
• WithSecureLabs / tau-engine
  A document tagging library
  ☆29Updated last year
• herosi / triage-collector
  ☆21Updated last month
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆49Updated last year
• dfir-dd / dionysos
  Scanner for certain IoCs
  ☆11Updated 7 months ago
• theflakes / fmd
  Windows file metadata / forensic tool.
  ☆15Updated 2 months ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆42Updated last year
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆43Updated last month
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated last year
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆22Updated 8 months ago
• jstrosch / FLARE-VM-configs
  These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…
  ☆13Updated 7 months ago
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆34Updated last year
• leandrofroes / malware-research
  General malware analysis stuff
  ☆35Updated 2 months ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆48Updated 8 months ago
• elastic / Silhouette
  Keep it secret, keep it safe
  ☆75Updated last year
• marirs / capa-rs
  File Capability Extractor
  ☆12Updated last week
• Cainor / Calendarinho
  Manage Your Large Team of Consultants
  ☆12Updated 4 months ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated 3 weeks ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆47Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆67Updated 8 months ago
• Yamato-Security / Presentations
  ☆15Updated 2 weeks ago
• woanware / etw-event-dumper
  ☆31Updated 2 years ago
• FarghlyMal / Config-Extractors
  ☆27Updated 3 months ago
• ydkhatri / jarp
  Just Another broken Registry Parser (JARP)
  ☆16Updated 5 months ago
• DissectMalware / yaradbg-frontend
  ☆37Updated 9 months ago
• keydet89 / RegRipper4.0
  RegRipper4.0
  ☆39Updated last year
• magicsword-io / bootloaders
  bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profes…
  ☆48Updated last year
• hashlookup / hashlookup-gui
  Provides a multi-platform Graphical User Interface for hashlookup
  ☆12Updated 4 months ago
• AbdulRhmanAlfaifi / lnk_parser
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆16Updated last year
• k3idii / ION
  Indicators of Normality
  ☆12Updated 2 years ago