PacktPublishing / Learning-Python-for-Forensics

Related projects ⓘ

Alternatives and complementary repositories for Learning-Python-for-Forensics

• PacktPublishing / Python-Digital-Forensics-Cookbook
  Python Digital Forensics Cookbook, published by Packt
  ☆95Updated last year
• dlcowen / dfirwizard
  Example programs used in the automating DFIR series
  ☆64Updated 5 years ago
• keydet89 / Tools
  Tools from WFA 4/e, timeline tools, etc.
  ☆132Updated 8 months ago
• keithjjones / fileintel
  A modular Python application to pull intelligence about malicious files
  ☆118Updated 3 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆76Updated 4 years ago
• Silv3rHorn / ArtifactExtractor
  Extract common Windows artifacts from source images and VSCs
  ☆65Updated 3 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆130Updated 2 years ago
• michael-yip / ThreatTracker
  ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…
  ☆66Updated 9 years ago
• teamdfir / concordance
  Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.
  ☆65Updated 4 years ago
• AnttiKurittu / kirjuri
  Kirjuri is a web application for managing cases and physical forensic evidence items.
  ☆107Updated 3 years ago
• nannib / Imm2Virtual
  This is a GUI (for Windows 64 bit) for a procedure to virtualize your EWF(E01), DD (raw), AFF disk image file without converting it, dire…
  ☆50Updated 5 years ago
• sdckey / EnScript-Samples
  This repository is a collection of EnScript code samples for use in the OpenText EnCase application.
  ☆52Updated 4 months ago
• certsocietegenerale / event2timeline
  Simple Microsoft Windows sessions event logs visualization
  ☆150Updated 2 years ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆237Updated 3 years ago
• johestephan / CTI-Toolbox
  Cyber Threat Intelligence - Toolbox
  ☆50Updated 6 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 3 years ago
• egaus / MaliciousMacroBot
  ☆150Updated 5 years ago
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆96Updated this week
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆72Updated 5 months ago
• 4n6ist / bulk_extractor-rec
  It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving
  ☆37Updated 4 years ago
• mantarayforensics / mantaray
  MantaRay Automated Computer Forensic Triage Tool
  ☆63Updated 5 years ago
• forensenellanebbia / xways-forensics
  Personal settings for X-Ways Forensics
  ☆32Updated 2 years ago
• bromiley / olaf
  Office365 Log Analysis Framework
  ☆81Updated 5 years ago
• google / dfdewey
  ☆19Updated last year
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated last year
• PythonForensics / PythonForensicsCookbook
  Code for the Python Digital Forensics Cookbook
  ☆51Updated 6 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆46Updated last month
• OMENScan / AChoir
  Windows Live Artifacts Acquisition Script
  ☆183Updated 2 years ago