A quick reference guide for python script development in DFIR
☆18Mar 20, 2024Updated 2 years ago
Alternatives and similar repositories for python-forensics-handbook
Users that are interested in python-forensics-handbook are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated 2 years ago
- This is to edit a training forensic image file (raw/dd) and zero out all the unnecessary files.☆11Jun 21, 2025Updated last year
- introduction to distributed scanning using vultr☆11Apr 29, 2017Updated 9 years ago
- Jupyter Notebooks for Digital Forensics & Incident Response☆10Nov 23, 2021Updated 4 years ago
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆19Jun 10, 2026Updated 3 weeks ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- This repo contains C/C++ snippets that can be handy in specific offensive scenarios.☆14May 31, 2024Updated 2 years ago
- Script to process PDF files☆22May 23, 2025Updated last year
- A project designed to make the operationalization of open-source cyber threat intelligence more efficient.☆19Updated this week
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 7 months ago
- This repo is all about Blue teamming and CyberDefenders Write-up for their DFIR challenges☆19Nov 5, 2023Updated 2 years ago
- A collaboration effort by the DFIR community to provide definitions (sometimes multiple) for common forensic terms!☆26Dec 1, 2022Updated 3 years ago
- Collection of scripts and tools related to the eCTHPv2 exam by INE.☆19Jun 12, 2022Updated 4 years ago
- Case_Notes.py is a cross-platform (Windows, macOS, & Linux) python script to help make the documentation process easier.☆26Jun 24, 2023Updated 3 years ago
- A guide to setting up Windows and MacOS the way I like it☆22Jun 25, 2025Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Windows 10 Live Information viewer☆40Jan 27, 2022Updated 4 years ago
- Queries for Carbon Black Response☆11Feb 11, 2020Updated 6 years ago
- virustotal API-based project for checking the list of hashes against virustotal.com database☆11Jun 19, 2026Updated last week
- A tool to parse Firefox and Chrome HSTS databases into forensic artifacts!☆26Jan 8, 2026Updated 5 months ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Jul 23, 2020Updated 5 years ago
- Command and Control Framework☆14Mar 23, 2024Updated 2 years ago
- Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.☆44Oct 25, 2024Updated last year
- Some of the lab files for the SANS Institute course SEC505: Securing Windows and PowerShell Automation: https://sans.org/sec505☆18Jun 8, 2017Updated 9 years ago
- a GUI Interface for DFIR Open Source Tools☆10Jun 16, 2015Updated 11 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- macOS Artifacts☆33Mar 2, 2025Updated last year
- Offsec PWB Lab Tools☆13Nov 14, 2013Updated 12 years ago
- Some dfir stuff☆31Jan 12, 2022Updated 4 years ago
- Is a portable forensic tool for analyzing Windows logs, pre-organized according to the methodology outlined in this job: https://cybersec…☆16Jul 19, 2025Updated 11 months ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆33Jan 1, 2020Updated 6 years ago
- dcfldd - enhanced version of dd for forensics and security☆75Jun 17, 2018Updated 8 years ago
- A simple DNS exfiltration script☆11Apr 17, 2023Updated 3 years ago
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆43Jul 18, 2022Updated 3 years ago
- Search an entire directory of .eml email files for a word or phrase... in over 100 languages.☆12Feb 28, 2023Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A simple trap for web crawlers☆13Aug 2, 2023Updated 2 years ago
- Windows.EDB Browser☆62Mar 6, 2023Updated 3 years ago
- An ocrmypdf front-end / batch job designer☆18Sep 1, 2023Updated 2 years ago
- A curated list of digital forensic tools.☆21Dec 2, 2019Updated 6 years ago
- Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.☆56Jan 26, 2025Updated last year
- ☆20Feb 23, 2019Updated 7 years ago
- ☆15Aug 8, 2020Updated 5 years ago