elceef / bitlocker

Related projects ⓘ

Alternatives and complementary repositories for bitlocker

• MagnetForensics / Hibr2Bin
  Comae Hibernation File Decompressor
  ☆141Updated last year
• mkorman90 / VolatilityBot
  VolatilityBot – An automated memory analyzer for malware samples and memory dumps
  ☆263Updated 3 years ago
• volatilityfoundation / community
  Volatility plugins developed and maintained by the community
  ☆342Updated 3 years ago
• tomchop / volatility-autoruns
  Autoruns plugin for the Volatility framework
  ☆118Updated 5 years ago
• 504ensicsLabs / DAMM
  Differential Analysis of Malware in Memory
  ☆209Updated 7 years ago
• williballenthin / EVTXtract
  EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
  ☆189Updated 4 years ago
• ShaneK2 / inVtero.net
  inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…
  ☆279Updated last year
• tribalchicken / volatility-bitlocker
  Volatility plugin to extract BitLocker Full Volume Encryption Keys (FVEK)
  ☆62Updated 3 years ago
• kevthehermit / VolUtility
  Web App for Volatility framework
  ☆380Updated this week
• JamesHabben / evolve
  Web interface for the Volatility Memory Forensics Framework
  ☆259Updated 7 years ago
• msuhanov / Linux-write-blocker
  The kernel patch and userspace tools to enable Linux software write blocking
  ☆135Updated 4 years ago
• Velocidex / c-aff4
  An AFF4 C++ implementation.
  ☆188Updated last year
• H2Cyber / VolDiff
  VolDiff: Malware Memory Footprint Analysis based on Volatility
  ☆193Updated 7 years ago
• mandiant / flare-wmi
  ☆417Updated last year
• msuhanov / dfir_ntfs
  An NTFS/FAT parser for digital forensics & incident response
  ☆191Updated 2 weeks ago
• airbus-cert / regrippy
  A modern Python-3-based alternative to RegRipper
  ☆187Updated 2 weeks ago
• ANSSI-FR / polichombr
  Collaborative malware analysis framework
  ☆375Updated 5 years ago
• ctxis / RDP-Replay
  Replay RDP traffic from PCAP
  ☆187Updated 5 years ago
• PoorBillionaire / Windows-Prefetch-Parser
  Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files
  ☆115Updated 5 months ago
• JohnLaTwC / PyPowerShellXray
  Python script to decode common encoded PowerShell scripts
  ☆215Updated 6 years ago
• joesecurity / pafishmacro
  Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …
  ☆278Updated 7 years ago
• volatilityfoundation / profiles
  Volatility profiles for Linux and Mac OS X
  ☆318Updated 2 years ago
• davidpany / WMI_Forensics
  ☆294Updated 4 years ago
• log2timeline / dfvfs
  Digital Forensics Virtual File System (dfVFS)
  ☆205Updated last month
• williballenthin / INDXParse
  Tool suite for inspecting NTFS artifacts.
  ☆216Updated last year
• mandiant / ShimCacheParser
  ☆273Updated last year
• Invoke-IR / ForensicPosters
  ☆436Updated 5 months ago
• OMENScan / AChoir
  Windows Live Artifacts Acquisition Script
  ☆183Updated 2 years ago