labcif / YPALinks
Autopsy plugin to extract information from the 'Your Phone' Windows 10 App
☆13Updated 4 years ago
Alternatives and similar repositories for YPA
Users that are interested in YPA are comparing it to the libraries listed below
Sorting:
- Parser for Sdba memory pool tags☆18Updated 3 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆16Updated last year
- Autopsy Module to analyze Registry Hives☆15Updated 3 years ago
- Collection of tools for processing storage media images☆14Updated 5 months ago
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆27Updated 2 years ago
- A C# (.NET 6) tool to compare the file signature of files recursively and inform the user of matches and mismatches☆16Updated 6 months ago
- Just Another broken Registry Parser (JARP)☆16Updated last year
- isodump - ISO dump utility☆40Updated 6 years ago
- This repository contains a variety of plugins and scripts, related to the Volatility framework.☆14Updated 4 months ago
- Windows 10 Live Information viewer☆36Updated 3 years ago
- http://moaistory.blogspot.com/2016/08/ie10analyzer.html☆17Updated 11 months ago
- Powershell scripts☆12Updated 2 years ago
- Scan and decode NetWire logs☆12Updated 2 years ago
- WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.☆32Updated last year
- ☆10Updated last year
- Android Usagestats XML + Protobuf Parser☆24Updated 4 years ago
- Forensics triage tool relying on Volatility and Foremost☆26Updated last year
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆32Updated last year
- Git for me to put all my forensics stuff☆22Updated 5 months ago
- ☆9Updated 5 years ago
- Digital Forensics date and time☆24Updated 5 months ago
- volatility-runner is a command line application designed to speed up memory forensics using the volatility framework, primarily for insta…☆11Updated 6 years ago
- NTFS file system specimens☆13Updated last year
- Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff☆54Updated 4 months ago
- Python web app for previewing data in a Chrome Profile Folder☆21Updated 11 months ago
- An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.☆26Updated last year
- CyberChef update scripts in PowerShell & Bash☆16Updated last year
- Extract compressed memory pages from page-aligned data☆45Updated 6 years ago
- Various Topics☆16Updated last month
- Browser History Histogram -- module for the Autopsy Forensic Browser☆11Updated 5 years ago