Library of functions to apply Data Science in several forensics artifacts
☆41Aug 19, 2024Updated last year
Alternatives and similar repositories for ds4n6_lib
Users that are interested in ds4n6_lib are comparing it to the libraries listed below
Sorting:
- Library of python scripts to apply Data Science in several forensics artifacts☆31Jul 16, 2020Updated 5 years ago
- Sabonis, a Digital Forensics and Incident Response pivoting tool☆19Mar 3, 2022Updated 4 years ago
- A specialized implementation of the Hierarchical Navigable Small World (HNSW) data structure adapted for efficient nearest neighbor looku…☆10Mar 3, 2026Updated last week
- ☆24Mar 12, 2025Updated 11 months ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- Parsers for common structures across windows formats.☆12Aug 23, 2023Updated 2 years ago
- Queries for parsed spotlight database in sqlite☆13Dec 29, 2020Updated 5 years ago
- Pipeline that allows sending forensic artifacts to OpenRelik for automatic processing☆40Jan 30, 2026Updated last month
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- Tools for attacking various MIFARE RFID cards☆16Jun 21, 2019Updated 6 years ago
- Publicly shareable windows event log message data☆28Nov 29, 2019Updated 6 years ago
- LILO based Pulse Secure appliance disk image decryptor☆13Mar 20, 2024Updated last year
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆19Feb 26, 2024Updated 2 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆36Jun 1, 2023Updated 2 years ago
- CyLR - Live Response Collection Tool☆10Jul 14, 2020Updated 5 years ago
- Tools for macOS Forensic Bootable media☆15May 20, 2020Updated 5 years ago
- NTFS file system specimens☆13Jul 3, 2023Updated 2 years ago
- Parses for Google Analytic values in raw files like RAM, DD images etc.☆18Apr 17, 2016Updated 9 years ago
- Home repo for documentation and links to resources☆12Jul 25, 2019Updated 6 years ago
- Handy scripts to speed up malware analysis☆34Oct 3, 2023Updated 2 years ago
- Set up a quick and dirty audit log on an SQLite db.☆16May 16, 2013Updated 12 years ago
- extract and parse WEVT_TEMPLATEs from PE files☆18Dec 30, 2023Updated 2 years ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆18Oct 7, 2016Updated 9 years ago
- CryptnetURLCacheParser is a tool to parse CryptAPI cache files☆21Aug 3, 2024Updated last year
- http://moaistory.blogspot.com/2016/08/ie10analyzer.html☆19Jul 20, 2024Updated last year
- ☆35Oct 20, 2024Updated last year
- Recursively validate a starting directory of file contents to identify changes, corrupt data☆37Jul 28, 2020Updated 5 years ago
- Convert Windows Netmon Monitor Mode Wireless Packet Captures to Libpcap Format☆15Jul 20, 2019Updated 6 years ago
- Windows Forensics Salt States☆21Updated this week
- pcaps for Wireshark tutorial about examining Dridex infection traffic☆17Oct 8, 2020Updated 5 years ago
- Synthesizing Framework Models for Symbolic Execution☆15Sep 15, 2016Updated 9 years ago
- Digital Forensic Investigative Scripts☆87Feb 28, 2026Updated last week
- Quick tidytext examination of Mueller vs. Watergate reports☆16Apr 22, 2019Updated 6 years ago
- Python bindings for LZFSE☆18Jul 9, 2020Updated 5 years ago
- High-level Threat Intelligence playbooks☆20Mar 6, 2021Updated 5 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆19Jul 15, 2021Updated 4 years ago
- All necessary code in order to feed Sysmon data into Recurrent Neural Network☆17Jul 2, 2020Updated 5 years ago
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 4 years ago