dfxml-working-group / dfxml_pythonLinks
Digital Forensics XML packages in Python
☆16Updated 4 months ago
Alternatives and similar repositories for dfxml_python
Users that are interested in dfxml_python are comparing it to the libraries listed below
Sorting:
- Fast lookup server for NSRL and other hash database used in digital forensic☆45Updated 3 years ago
- macOS Artifact Intelligence Tool☆13Updated 6 years ago
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆27Updated 2 years ago
- A web scraper to create MISP events and reports☆16Updated 2 months ago
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆126Updated last year
- Converting data from services like Censys and Shodan to a common data model☆50Updated 2 months ago
- TAPIR is a multi-user, client/server, incident response framework☆45Updated 3 years ago
- AIL project training materials☆35Updated last month
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Updated last year
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆33Updated last year
- ☆21Updated 5 months ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 7 months ago
- Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.☆42Updated 10 months ago
- Script that checks for available updates for the most commonly used Digital Forensics tools☆59Updated 4 years ago
- Information about the open-source-dfir slack community☆30Updated 2 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 4 years ago
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated last year
- NTFS file system specimens☆13Updated 2 years ago
- It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving☆39Updated 5 years ago
- The Python implementation of the AFF4 standard.☆44Updated last year
- Creating a Feed of MISP Events from ThreatFox (by abuse.ch)☆19Updated 4 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 3 years ago
- AFF4 Standard Documents☆29Updated 3 years ago
- Can you pay the ransom in your country?☆15Updated last year
- XML Schema for Digital Forensics XML☆36Updated 6 months ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆109Updated last week
- Digital Forensics Artifacts Knowledge Base☆86Updated last year
- Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.☆31Updated last year
- A tool to use novel locations to extract metadata from Office documents.☆63Updated 2 years ago
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆116Updated last year