MasterParser is a simple, all-in-one, digital forensics artifact parser
☆24Jul 9, 2021Updated 4 years ago
Alternatives and similar repositories for MasterParser
Users that are interested in MasterParser are comparing it to the libraries listed below
Sorting:
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆210Oct 19, 2020Updated 5 years ago
- ☆21Aug 31, 2022Updated 3 years ago
- Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks☆25Aug 8, 2020Updated 5 years ago
- Manage Your Large Team of Consultants☆11Sep 18, 2025Updated 6 months ago
- Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…☆43Sep 21, 2023Updated 2 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆46Jan 2, 2022Updated 4 years ago
- Disk Image Mounting Script☆11Jan 22, 2026Updated 2 months ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- Mass Triage Tools☆20Mar 10, 2026Updated last week
- macOS Artifact Intelligence Tool☆13Apr 30, 2019Updated 6 years ago
- Netwitness Maltego integration Project☆18May 9, 2017Updated 8 years ago
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆45Aug 17, 2020Updated 5 years ago
- Digital Forensics Investigation Platform☆876Oct 12, 2024Updated last year
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Oct 25, 2023Updated 2 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- Scripts for MacOS related tasks.☆18Feb 16, 2020Updated 6 years ago
- Various tools and scripts☆43Nov 30, 2022Updated 3 years ago
- AFF4 Standard Documents☆29Feb 4, 2022Updated 4 years ago
- Virustotal Data to Timesketch☆16Feb 28, 2019Updated 7 years ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆36Feb 2, 2022Updated 4 years ago
- VMDK Forensic Artifact Extractor (VFAE) is windows based tool written in C++ that extracts files with a known location from VMDK images r…☆17Aug 7, 2015Updated 10 years ago
- NTFS file system specimens☆13Jul 3, 2023Updated 2 years ago
- Publicly shareable windows event log message data☆28Nov 29, 2019Updated 6 years ago
- A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.☆12Jun 23, 2025Updated 8 months ago
- Creating a Feed of MISP Events from ThreatFox (by abuse.ch)☆19Jun 2, 2021Updated 4 years ago
- Recon Hunt Queries☆79May 16, 2021Updated 4 years ago
- Artifact collection tool for *nix systems☆213Mar 20, 2024Updated 2 years ago
- Kestrel Jupyter Notebook Kernel☆10Oct 19, 2023Updated 2 years ago
- ☆13Apr 6, 2016Updated 9 years ago
- ☆24Mar 12, 2025Updated last year
- $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility☆38Jul 18, 2024Updated last year
- Defence Against the Dark Arts☆34Sep 15, 2019Updated 6 years ago
- i summarize found scripts here☆14Jan 10, 2022Updated 4 years ago
- Dissect triage scripts for Citrix NetScaler devices☆69Nov 17, 2025Updated 4 months ago
- Various capabilities for static malware analysis.☆80Sep 4, 2024Updated last year
- A Windows registry file parser written in Rust☆41Oct 30, 2025Updated 4 months ago
- LNK to JSON☆14Mar 7, 2019Updated 7 years ago
- Parsers for .mdf file of Microsoft SQL Server (MSSQL)☆15Mar 28, 2020Updated 5 years ago