Personal settings for X-Ways Forensics
☆35Apr 28, 2022Updated 4 years ago
Alternatives and similar repositories for xways-forensics
Users that are interested in xways-forensics are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- Toolset to analyze disks encrypted with McAFee FDE technology☆19Mar 11, 2021Updated 5 years ago
- An advanced parser for INDX records☆30Aug 7, 2019Updated 6 years ago
- Binaries for the log2timeline projects and dependencies☆40May 14, 2026Updated 2 weeks ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆43Jul 18, 2022Updated 3 years ago
- Parses KAPE module files and downloads binaries referenced by BinaryURL☆18Oct 2, 2019Updated 6 years ago
- StickyParser - Sticky Notes Forensic. A Windows Sticky Notes Praser (snt and plum.sqlite supported). Additional Feature: SQLite Recovery …☆21Jul 18, 2023Updated 2 years ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Various Topics☆18Apr 30, 2025Updated last year
- X-Ways Forensic/ WinHex templates☆52Jan 25, 2022Updated 4 years ago
- A dedicated repo to interact with the API of Timesketch☆12Sep 17, 2021Updated 4 years ago
- Automated forensics written in PowerShell☆34Sep 29, 2019Updated 6 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Here are some tools I developed to help analyze malware☆11Nov 8, 2023Updated 2 years ago
- SQLite queries☆87Mar 8, 2023Updated 3 years ago
- Windows.EDB Browser☆62Mar 6, 2023Updated 3 years ago
- $MFT directory tree reconstruction & FILE record info☆330Oct 7, 2024Updated last year
- Tools from WFA 4/e, timeline tools, etc.☆145Feb 29, 2024Updated 2 years ago
- CDPO is a tool to validate, de-duplicate, combine, query, and encrypt track data recovered from a breach.☆15Jun 23, 2017Updated 8 years ago
- Forensic Scanner☆41Nov 29, 2012Updated 13 years ago
- Win 10/11 related research☆200Dec 19, 2023Updated 2 years ago
- MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.☆20Feb 20, 2020Updated 6 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆47Apr 4, 2026Updated last month
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆112Feb 6, 2026Updated 3 months ago
- Tools to work with vulnerability standards.☆19Mar 19, 2014Updated 12 years ago
- iOS Backup Examiner - A forensics tool for parsing an iOS backup's Info.plist file☆23Dec 5, 2016Updated 9 years ago
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- A set of tools for collecting forensic information☆28Apr 4, 2020Updated 6 years ago
- MS Word (DOCx) Parsing Tool☆25Mar 14, 2026Updated 2 months ago
- iOS backup utilities, written in rust☆32Sep 18, 2024Updated last year
- Vault of Windows Registry forensic artifacts☆30Nov 12, 2025Updated 6 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Recover EXT filesystem info from carved directory blocks☆19Jun 23, 2017Updated 8 years ago
- C# Library and research notes for Windows 11 Notepad State Files☆31Oct 30, 2025Updated 6 months ago
- Malformed Access Log to CSV - Convert Web Server Access Logs to CSV☆18Sep 3, 2024Updated last year
- Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux☆138Updated this week
- Python script for parsing ESET (NOD32) virlog.dat file.☆15Sep 28, 2017Updated 8 years ago
- Blueteam operational triage registry hunting/forensic tool.☆148Sep 2, 2025Updated 8 months ago
- A repository of output using KAPE (!EZParser Module) for various publicly available forensic images!☆17Aug 31, 2024Updated last year