CLI utility and Python module for analyzing log files and other data.
☆159Aug 7, 2024Updated last year
Alternatives and similar repositories for logdissect
Users that are interested in logdissect are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Data exfiltration using covert channels in the TCP/IP protocol with some basic steganography.☆12Apr 19, 2017Updated 9 years ago
- Penguin OS Forensic (or Flight) Recorder☆41Mar 27, 2026Updated last month
- ☆21May 8, 2022Updated 4 years ago
- Carving tool based in Radare2 & Yara☆16Oct 30, 2018Updated 7 years ago
- Aspirational stuff☆15May 30, 2017Updated 8 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- ☆12Apr 26, 2018Updated 8 years ago
- A fast library for parsing and importing Windows Event Logs into Elasticsearch.☆88May 11, 2026Updated last week
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆21Jul 1, 2023Updated 2 years ago
- A Proof of Concept (PoC) IRC backdoor written in Python☆11Jan 29, 2021Updated 5 years ago
- This is a small and simple toolkit that might be useful during steganalysis, it is currently composed by several general purpose command …☆33Jun 12, 2020Updated 5 years ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆40May 3, 2021Updated 5 years ago
- Git for me to put all my forensics stuff☆23Sep 2, 2025Updated 8 months ago
- A framework for orchestrating forensic collection, processing and data export☆348Updated this week
- Tools and library to manipulate EFI variables.☆10Apr 21, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆110Feb 18, 2024Updated 2 years ago
- Network Forensics Workshop Files☆17Apr 21, 2015Updated 11 years ago
- A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.☆489Feb 21, 2021Updated 5 years ago
- Malware analysis tool☆22Apr 27, 2025Updated last year
- Docker container of SANS Investigative Forensic Toolkit (SIFT) Workstation Version 3☆10Oct 9, 2016Updated 9 years ago
- inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…☆297Sep 30, 2023Updated 2 years ago
- Python IOC Editor☆66Mar 10, 2015Updated 11 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆50Feb 11, 2014Updated 12 years ago
- ☆21Feb 6, 2024Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.☆484Nov 15, 2024Updated last year
- Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .☆69May 13, 2026Updated last week
- All the useful tools interesting to be used☆24Sep 20, 2022Updated 3 years ago
- DEPRECATED, Nozzlr is a bruteforce framework, trully modular and script-friendly☆65Jan 11, 2023Updated 3 years ago
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- XLSX parser for nessus and nmap scan results.☆12Nov 22, 2019Updated 6 years ago
- Linux assembly programs☆18May 13, 2026Updated last week
- Carves EXEs from given data files, using intelligent carving based upon PE headers☆38May 2, 2017Updated 9 years ago
- Super timeline all the things☆2,071Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Python scripts for gdb, reverse engineering oriented☆16Sep 20, 2016Updated 9 years ago
- Threat Simulator for Enterprise Networks☆14May 14, 2022Updated 4 years ago
- Windows Registry Knowledge Base☆195May 16, 2026Updated last week
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆37Jul 11, 2023Updated 2 years ago
- IoC's, PCRE's, YARA's etc☆23Mar 25, 2025Updated last year
- RuCTF 2016 repository☆16Nov 16, 2019Updated 6 years ago
- API hashing written in C to load APIs indirectly using CRC32 hashing☆15Jul 27, 2020Updated 5 years ago