Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
☆44Oct 25, 2024Updated last year
Alternatives and similar repositories for SPECTR3
Users that are interested in SPECTR3 are comparing it to the libraries listed below
Sorting:
- CyLR - Live Response Collection Tool☆10Jul 14, 2020Updated 5 years ago
- ☆20Jan 28, 2026Updated last month
- L.I.A.M is an open source case management system for digital forensics labs. Law-Enforcement Investigations and Asset Management☆13Jul 4, 2025Updated 7 months ago
- Netwitness Maltego integration Project☆18May 9, 2017Updated 8 years ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 8 months ago
- Bash script for performing the logical acquisition of Apple Silicon Mac☆17Jun 21, 2024Updated last year
- Execute embedded Mimikatz☆13Nov 24, 2021Updated 4 years ago
- Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions☆53Dec 21, 2021Updated 4 years ago
- Documentation for DFIR ORC, artefact collection tool dedicated to Microsoft Windows☆12May 23, 2025Updated 9 months ago
- Automatically create iSCSI targets for all drives except for a boot device☆25May 23, 2025Updated 9 months ago
- ☆13Dec 29, 2022Updated 3 years ago
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated last year
- MalwareAnalysis☆12Dec 19, 2020Updated 5 years ago
- Automatic, fast parsing of browser artifacts☆17Jan 4, 2025Updated last year
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- mister-skinnylegs is an open plugin framework for parsing website/webapp artifacts in browser data. It currently provides a command line …☆18Nov 14, 2025Updated 3 months ago
- VMDK Forensic Artifact Extractor (VFAE) is windows based tool written in C++ that extracts files with a known location from VMDK images r…☆17Aug 7, 2015Updated 10 years ago
- an Improoved Version of 0xNinjaCyclone´s EarlyCascade Code☆22Feb 20, 2025Updated last year
- A quick reference guide for python script development in DFIR☆17Mar 20, 2024Updated last year
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆19Apr 30, 2025Updated 10 months ago
- Python bindings for https://github.com/omerbenamram/mft☆23Dec 23, 2025Updated 2 months ago
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆43Jul 18, 2022Updated 3 years ago
- Library of threat hunts to get any user started!☆49Sep 4, 2020Updated 5 years ago
- Script to process PDF files☆21May 23, 2025Updated 9 months ago
- Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.☆51Jan 26, 2025Updated last year
- Library to handle the files in zff format (file format to store and handle forensic acquisitions).☆21Feb 9, 2026Updated 3 weeks ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆22Apr 16, 2021Updated 4 years ago
- PyVelociraptor contains the python bindings for the Velociraptor API.☆21Feb 11, 2026Updated 3 weeks ago
- A tool for fetching DFIR and other GitHub tools.☆25Aug 2, 2025Updated 7 months ago
- ☆19Dec 12, 2023Updated 2 years ago
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 3 months ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆646Nov 7, 2025Updated 3 months ago
- Hunt for SQLite files used by various applications☆30Jan 31, 2026Updated last month
- A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.☆107Nov 23, 2022Updated 3 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆24Jul 9, 2021Updated 4 years ago
- Forensic Artifact Collection Tool for macOS☆118Jul 28, 2025Updated 7 months ago
- Case_Notes.py is a cross-platform (Windows, macOS, & Linux) python script to help make the documentation process easier.☆26Jun 24, 2023Updated 2 years ago
- Microsoft Office365 Protection Center Audit Log Parser☆27Jul 17, 2023Updated 2 years ago