dfxml-working-group / dfxml_pythonLinks
Digital Forensics XML packages in Python
☆16Updated 5 months ago
Alternatives and similar repositories for dfxml_python
Users that are interested in dfxml_python are comparing it to the libraries listed below
Sorting:
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆33Updated 2 years ago
- Fast lookup server for NSRL and other hash database used in digital forensic☆45Updated 3 years ago
- TAPIR is a multi-user, client/server, incident response framework☆46Updated 3 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 4 years ago
- Creating a Feed of MISP Events from ThreatFox (by abuse.ch)☆19Updated 4 years ago
- Automate the regular transfer of AIS data into a MISP Server☆10Updated last year
- Converting data from services like Censys and Shodan to a common data model☆50Updated 2 months ago
- Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.☆31Updated last year
- Digital Forensics Artifacts Knowledge Base☆86Updated last year
- Integration between MISP platform and McAfee MVISION EDR☆14Updated 3 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Updated last year
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated last year
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 3 years ago
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆126Updated last year
- AIL project training materials☆35Updated 2 months ago
- Digital Forensic Investigative Scripts☆83Updated last week
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆28Updated 2 years ago
- NapierOne. A Publicly Available Modern Mixed File Data Set. The data set is suitable for a variety of testing scenarios such as Ransomwar…☆21Updated 3 years ago
- AFF4 Standard Documents☆29Updated 3 years ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆108Updated last week
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆116Updated last year
- ☆25Updated last month
- Penguin OS Forensic (or Flight) Recorder☆40Updated 8 months ago
- BlackBerry Threat Research & Intelligence☆99Updated last year
- Python module to use the MISP Taxonomies☆29Updated this week
- A few quick recipes for those that do not have much time during the day☆22Updated 10 months ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Carve file metadata from NTFS index ($I30) attributes☆70Updated last year
- A DFVFS Backed Forensic Viewer☆40Updated 5 years ago
- The Python implementation of the AFF4 standard.☆45Updated last year