ForensicRS / forensic-rsLinks
Forensic framework to build tools that can be reused in multiple projects without changing anything
☆29Updated last week
Alternatives and similar repositories for forensic-rs
Users that are interested in forensic-rs are comparing it to the libraries listed below
Sorting:
- A cross platform forensic parser written in Rust!☆95Updated this week
- Rust bindings to Microsoft Windows users / groups management API☆34Updated last year
- lnk_parser is a full rust implementation to parse windows LNK files☆20Updated 2 months ago
- Keep it secret, keep it safe☆78Updated 7 months ago
- A document tagging library☆30Updated 5 months ago
- Parsers for common structures across windows formats.☆12Updated 2 years ago
- WhiteBeam: Transparent endpoint security☆101Updated 2 years ago
- Imphash-like calculation on Golang binaries☆49Updated 3 years ago
- information about ransomware groups (Ransomware Analysis Notes)☆39Updated last year
- Hardened your Windows OS against forensics analysis☆21Updated 9 months ago
- Configuration Extractors for Malware☆113Updated 4 months ago
- Powershell Linter☆83Updated 2 weeks ago
- A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…☆103Updated 2 weeks ago
- 🕵️♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️☆34Updated 2 years ago
- A small util to brute-force prefetch hashes☆78Updated 3 years ago
- These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…☆15Updated last year
- Quick network scanner library. https://crates.io/crates/qscan☆86Updated 2 years ago
- Linpmem is a linux memory acquisition tool☆87Updated 2 months ago
- ETW forensic tool for Volatility3 plugin☆16Updated 10 months ago
- ☆66Updated 2 years ago
- MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…☆30Updated last year
- Golang bindings for PE-sieve☆42Updated last year
- Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨☆35Updated this week
- An interactive mock C2 server☆17Updated 2 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated 2 years ago
- Yara Rules for Modern Malware☆79Updated last year
- C2 Active Scanner☆59Updated last year
- GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…☆70Updated last month
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆46Updated 2 years ago
- ☆27Updated 9 months ago