Squiblydoo / Chromagnon
Chrome/Chromium Forensic Tool : Parses History, Visited Links, Downloaded Files and Cache
☆16Updated 11 months ago
Alternatives and similar repositories for Chromagnon:
Users that are interested in Chromagnon are comparing it to the libraries listed below
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆68Updated last year
- ☆19Updated last year
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆11Updated last year
- Tools and scripts to deploy and manage OpenRelik instances☆12Updated last month
- /ˈhäjˌpäj/ "a confused mixture."☆11Updated this week
- Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.☆19Updated last year
- Contains compiled binaries of Volatility☆31Updated last week
- Python script to walk a folder or a zip file for SQLite Databases☆38Updated last year
- A hex viewer for the sleuths!☆17Updated last year
- A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts☆56Updated 2 months ago
- Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.☆38Updated 3 months ago
- Logbook for Digital Forensics and Incident Response☆50Updated 6 months ago
- RegRipper4.0☆43Updated last year
- A repository of output using KAPE (!EZParser Module) for various publicly available forensic images!☆14Updated 5 months ago
- ☆48Updated this week
- ☆12Updated this week
- Just Another broken Registry Parser (JARP)☆16Updated 8 months ago
- Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.☆43Updated this week
- USN Journal full path builder☆54Updated 4 months ago
- Regexplore is a Volatility plugin designed to mimic the functionality of the Registry Explorer plugins in EZsuite☆17Updated last year
- Recycle bin artifact parser☆40Updated 2 weeks ago
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆45Updated 4 months ago
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆39Updated 2 years ago
- Case_Notes.py is a cross-platform (Windows, macOS, & Linux) python script to help make the documentation process easier.☆26Updated last year
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆55Updated this week
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆19Updated last year
- Carve file metadata from NTFS index ($I30) attributes☆62Updated 11 months ago
- my MSTICpy practice and custom tools repository☆11Updated 2 months ago
- WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.☆31Updated last year
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆50Updated last year