dcfldd - enhanced version of dd for forensics and security
☆71Jun 17, 2018Updated 7 years ago
Alternatives and similar repositories for dcfldd
Users that are interested in dcfldd are comparing it to the libraries listed below
Sorting:
- A rewrite of mactime, a bodyfile reader☆40Aug 5, 2024Updated last year
- Extract common Windows artifacts from source images and VSCs☆65May 10, 2021Updated 4 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Jan 1, 2020Updated 6 years ago
- A quick reference guide for python script development in DFIR☆17Mar 20, 2024Updated 2 years ago
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Mar 12, 2019Updated 7 years ago
- research chrome stored databases - dumping all urls☆42Nov 11, 2017Updated 8 years ago
- GUI for regripper☆11Mar 19, 2019Updated 7 years ago
- introduction to distributed scanning using vultr☆10Apr 29, 2017Updated 8 years ago
- Bolster NEO API - Artificial intelligence based zero-hour phishing detection☆13Aug 10, 2021Updated 4 years ago
- Open source Python library for NTFS analysis☆84Dec 22, 2017Updated 8 years ago
- Example programs used in the automating DFIR series☆63Mar 4, 2019Updated 7 years ago
- Digital Forensics and Incident Response notes and Autopsy tool walkthrough☆11Feb 3, 2022Updated 4 years ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆110Feb 18, 2024Updated 2 years ago
- Some dfir stuff☆31Jan 12, 2022Updated 4 years ago
- malware-encyclopedias is a set of tools to gather malware names and descriptions☆19May 19, 2016Updated 9 years ago
- macOS/iOS database location scraper to extract location data☆88Oct 26, 2022Updated 3 years ago
- upstream for seccheck☆15Jun 11, 2018Updated 7 years ago
- macOS triage is a python script to collect various macOS logs, artifacts, and other data.☆25Mar 25, 2021Updated 4 years ago
- Pure Python parser for classic Windows Event Log files (.evt)☆52Jun 30, 2023Updated 2 years ago
- Dump of organized knowledge on DFIR☆138Oct 4, 2021Updated 4 years ago
- R-CSIRT Linux Triage tool☆39Jun 28, 2018Updated 7 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆41Jan 20, 2023Updated 3 years ago
- This is a copy of the Registry Decoder repository from Google Code.☆29Aug 18, 2015Updated 10 years ago
- A project designed to make the operationalization of open-source cyber threat intelligence more efficient.☆17Updated this week
- This repo is all about Blue teamming and CyberDefenders Write-up for their DFIR challenges☆18Nov 5, 2023Updated 2 years ago
- This toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices☆160May 21, 2020Updated 5 years ago
- A FUSE module to mount captured network data☆41Jun 20, 2025Updated 9 months ago
- MantaRay Automated Computer Forensic Triage Tool☆65Feb 19, 2019Updated 7 years ago
- Hunt malware with Volatility☆49Mar 3, 2026Updated 2 weeks ago
- Tools for DFIR☆121Jan 25, 2018Updated 8 years ago
- Collection of different ways to execute code outside of the expected entry points☆16Aug 4, 2013Updated 12 years ago
- ☆10Jun 27, 2024Updated last year
- Create an incident response triage toolkit for use with Windows or Linux.☆18Jun 14, 2020Updated 5 years ago
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- Automagically extract forensic timeline from volatile memory dump☆133Mar 5, 2026Updated 2 weeks ago
- Invoke-Decoder – A PowerShell script to decode/deobfuscate malware samples☆18Aug 2, 2020Updated 5 years ago
- ☆519Jan 26, 2021Updated 5 years ago
- Malware analysis tool☆22Apr 27, 2025Updated 10 months ago
- Webapp to encrypt-decrypt with PGP for FirefoxOS☆10May 7, 2020Updated 5 years ago