Android Logs Events And Protobuf Parser
☆764Feb 9, 2026Updated 2 weeks ago
Alternatives and similar repositories for ALEAPP
Users that are interested in ALEAPP are comparing it to the libraries listed below
Sorting:
- iOS Logs, Events, And Plist Parser☆1,023Feb 12, 2026Updated 2 weeks ago
- Returns Logs Events And Properties Parser☆124Dec 24, 2025Updated 2 months ago
- Vehicle Logs Events And Properties Parser☆92Sep 27, 2025Updated 5 months ago
- WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.☆32Nov 16, 2023Updated 2 years ago
- ☆344Sep 23, 2025Updated 5 months ago
- Bash script to extract data from an Android device☆278Oct 28, 2022Updated 3 years ago
- Chrome Logs Events and Protobuf Parser☆39Dec 13, 2022Updated 3 years ago
- Apple Pattern of Life Lazy Output'er☆635Feb 25, 2024Updated 2 years ago
- Extract files from Apple devices on Windows, Linux and MacOS. Mostly a wrapper for pymobiledevice3. Creates iTunes-style backups and "adv…☆432Feb 9, 2026Updated 2 weeks ago
- A script to convert a Cellebrite UFDR to the original file structure.☆74Mar 21, 2022Updated 3 years ago
- macOS (& ios) Artifact Parsing Tool☆1,003Updated this week
- macOS forensic acquisition made simple☆220Feb 14, 2026Updated 2 weeks ago
- A curated list of iOS Forensics References, organized by folder with specific references (links to blog post, research paper, articles, a…☆227Dec 1, 2023Updated 2 years ago
- OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…☆229Jan 6, 2026Updated last month
- Collection of SQL query templates for digital forensics use by platform and application.☆112Apr 17, 2021Updated 4 years ago
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆696Oct 22, 2025Updated 4 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆341Dec 3, 2025Updated 2 months ago
- 📱 Andriller - is software utility with a collection of forensic tools for smartphones. It performs read-only, forensically sound, non-de…☆1,519Jun 27, 2022Updated 3 years ago
- FQLite - SQLite Forensic Toolkit. FQLite is a tool to find and restore deleted records in SQlite databases. It therefore examines the dat…☆135Feb 20, 2026Updated last week
- Autopsy Python Plugins☆373Aug 12, 2025Updated 6 months ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆646Nov 7, 2025Updated 3 months ago
- Parses USB connection artifacts from offline Registry hives☆107Feb 8, 2026Updated 3 weeks ago
- $MFT directory tree reconstruction & FILE record info☆326Oct 7, 2024Updated last year
- A curated list of KAPE-related resources☆182May 1, 2025Updated 10 months ago
- A tool for fetching DFIR and other GitHub tools.☆25Aug 2, 2025Updated 6 months ago
- iOS Photos.sqlite queries that may help with decoding data stored in Photos.sqlite. These queries are based on testing, research and some…☆70Mar 19, 2024Updated last year
- Browser forensics tool for Google Chrome (and other Chromium-based browsers)☆1,385Feb 22, 2026Updated last week
- The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportu…☆218Dec 30, 2025Updated 2 months ago
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆19Apr 30, 2025Updated 10 months ago
- This toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices☆158May 21, 2020Updated 5 years ago
- Memory acquisition for Linux that makes sense.☆220Nov 21, 2023Updated 2 years ago
- A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.☆107Nov 23, 2022Updated 3 years ago
- Script to recover deleted entries in an SQLite database☆196Apr 12, 2016Updated 9 years ago
- RegRipper3.0☆684Dec 12, 2024Updated last year
- Windows 10 Live Information viewer☆38Jan 27, 2022Updated 4 years ago
- AVML - Acquire Volatile Memory for Linux☆1,055Feb 20, 2026Updated last week
- Resources provided by the community that can serve to be useful for Law Enforcement worldwide☆118Jul 25, 2024Updated last year
- The home of the BriMor Labs rdpieces Perl script that tries to rebuild parsed RDP Bitmap Cache images☆89Aug 29, 2023Updated 2 years ago
- Script to process PDF files☆21May 23, 2025Updated 9 months ago