VMDK Forensic Artifact Extractor (VFAE) is windows based tool written in C++ that extracts files with a known location from VMDK images running the Windows operating system. The tool utilizes the VDDK (Virtual Disk Development Kit) API for the heavy lifting such as mounting, opening, and reading the VMDK selected. When vfae.exe is executed, i…
☆17Aug 7, 2015Updated 10 years ago
Alternatives and similar repositories for VFAE
Users that are interested in VFAE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Quick script to build host or investigation timelines using Carbon Black Response☆12Sep 25, 2018Updated 7 years ago
- It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving☆42Apr 23, 2020Updated 6 years ago
- C library of device-side LongFi Protocol☆14Jan 13, 2020Updated 6 years ago
- A Vagrant plugin that synchronises file changes on the host with a local copy on the guest virtual hard disk, to get around the problems …☆38Mar 10, 2022Updated 4 years ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆22Apr 16, 2021Updated 5 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- PyVelociraptor contains the python bindings for the Velociraptor API.☆21Apr 18, 2026Updated 2 weeks ago
- Windows日志清除工具☆10Apr 3, 2023Updated 3 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆24Jul 9, 2021Updated 4 years ago
- Windows user-space virtual file system with S3 or SSH backend☆19May 19, 2025Updated 11 months ago
- less ~ a clean-compiling, more Windows-friendly, fork of the original `less` by Mark Nudelman☆14Apr 10, 2026Updated 3 weeks ago
- ☆26Mar 10, 2022Updated 4 years ago
- A windows BDS .pdb dumper written in rust which dumps symbols and Relative Virtual Addresses into either a C++ header or a text file and …☆10Jul 1, 2023Updated 2 years ago
- Microsoft Windows user-mode API access with clean Rust types.☆15Feb 12, 2024Updated 2 years ago
- A command line utility to aid in using autofocus for IR and research☆27Oct 22, 2019Updated 6 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- file based virtual disk drive written in C++, C#, and .Net framework. A basic virtual disk kernel driver for learning. We have a user int…☆14Feb 27, 2022Updated 4 years ago
- Clean Adventure - Game vencedor da game jam da FIAP (N2020)�☆11Jun 28, 2021Updated 4 years ago
- $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility☆38Jul 18, 2024Updated last year
- # Docker Commands, Help & Tips ### Show commands & management commands ``` $ docker ``` ### Docker version info ``` $ docker version …☆19Sep 15, 2022Updated 3 years ago
- Spy FS - A tool to create a virtual copy of a folder and spy on that folder, to know which files are read and at what locations (file off…☆12Dec 19, 2020Updated 5 years ago
- Multi-agent AI system using GPT-4o, DeepSeek v3, and Llama 3.3 to detect if CVE vulnerabilities were exploited as zero-days. Analyzes…☆20Feb 13, 2026Updated 2 months ago
- Help you to clean up Windows XP/Vista/7/10 junk files。☆12Jun 20, 2022Updated 3 years ago
- A fresh Windows image over docker and kvm to accelerate tests over a clean environment accessible over ssh☆14Jun 21, 2024Updated last year
- Defence Against the Dark Arts☆34Sep 15, 2019Updated 6 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Terminate AV/EDR processes by exploiting the vulnerable NsecSoft driver☆32Sep 15, 2025Updated 7 months ago
- Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.☆44Oct 25, 2024Updated last year
- Pulse Secure SSL VPN pre-auth file reading☆50Aug 26, 2019Updated 6 years ago
- A ZSH plugin to allow easy named directory creation - shortcuts to any directory you want☆16Mar 25, 2018Updated 8 years ago
- The "DFUR" Splunk application and data that was presented at the 2020 SANS DFIR Summit.☆13Sep 9, 2020Updated 5 years ago
- A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.☆12Jun 23, 2025Updated 10 months ago
- Editor extension to improve the Unity Hierarchy Window. Adds useful detail to the Hierarchy while keeping it clean.☆16Jul 22, 2023Updated 2 years ago
- A clean, quick and simple Markdown viewer for Windows.☆22Feb 23, 2024Updated 2 years ago
- Linux BPF plugins for Volatility3☆23Jan 19, 2024Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- WhoCalls can query a directory of files, find the binaries, and search for a user specified Win API import. It and works with both 32-bit…☆19Jul 2, 2022Updated 3 years ago
- Digital Forensics and Incident Response notes and Autopsy tool walkthrough☆11Feb 3, 2022Updated 4 years ago
- Matt's DFIR blog☆14Jul 28, 2025Updated 9 months ago
- FFmpeg and DuiLib Plugin Demo☆10Jul 8, 2017Updated 8 years ago
- Jupyter Notebooks for Digital Forensics & Incident Response☆10Nov 23, 2021Updated 4 years ago
- A Windows tool that converts LDIF files to BloodHound CE☆31Dec 20, 2025Updated 4 months ago
- Documentation for DFIR ORC, artefact collection tool dedicated to Microsoft Windows☆12Apr 10, 2026Updated 3 weeks ago