VMDK Forensic Artifact Extractor (VFAE) is windows based tool written in C++ that extracts files with a known location from VMDK images running the Windows operating system. The tool utilizes the VDDK (Virtual Disk Development Kit) API for the heavy lifting such as mounting, opening, and reading the VMDK selected. When vfae.exe is executed, i…
☆17Aug 7, 2015Updated 10 years ago
Alternatives and similar repositories for VFAE
Users that are interested in VFAE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Netwitness Maltego integration Project☆18May 9, 2017Updated 9 years ago
- It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving☆43Apr 23, 2020Updated 6 years ago
- Hunt for SQLite files used by various applications☆31Mar 1, 2026Updated 3 months ago
- C library of device-side LongFi Protocol☆14Jan 13, 2020Updated 6 years ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆22Apr 16, 2021Updated 5 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- PyVelociraptor contains the python bindings for the Velociraptor API.☆23May 5, 2026Updated last month
- Windows user-space virtual file system with S3 or SSH backend☆19May 19, 2025Updated last year
- Scripts that disables unwanted windows features☆15Jan 6, 2023Updated 3 years ago
- less ~ a clean-compiling, more Windows-friendly, fork of the original `less` by Mark Nudelman☆14Apr 10, 2026Updated 2 months ago
- ☆26Mar 10, 2022Updated 4 years ago
- A command line utility to aid in using autofocus for IR and research☆27Oct 22, 2019Updated 6 years ago
- Clean Adventure - Game vencedor da game jam da FIAP (N2020)☆11Jun 28, 2021Updated 4 years ago
- $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility☆38Jul 18, 2024Updated last year
- # Docker Commands, Help & Tips ### Show commands & management commands ``` $ docker ``` ### Docker version info ``` $ docker version …☆19Sep 15, 2022Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A simple provider to analyse what gets passed into Microsoft's Anti-Malware Scan Interface☆17Jan 10, 2020Updated 6 years ago
- Assorted Cereals☆10Nov 13, 2021Updated 4 years ago
- Defence Against the Dark Arts☆34Sep 15, 2019Updated 6 years ago
- Terminate AV/EDR processes by exploiting the vulnerable NsecSoft driver☆31Sep 15, 2025Updated 8 months ago
- PowerShell module to free up disk space on Windows machines.☆22Dec 6, 2022Updated 3 years ago
- Powershell scripts to debloat, optimise and clean Windows 10☆17Dec 1, 2019Updated 6 years ago
- Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.☆44Oct 25, 2024Updated last year
- A Compiler from Sigma rules to VQL☆19May 18, 2026Updated 3 weeks ago
- A ZSH plugin to allow easy named directory creation - shortcuts to any directory you want☆16Mar 25, 2018Updated 8 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Scripts to uninstall Microsoft applications, installer packages, and other things I don't need, from Windows 10☆15Jan 16, 2017Updated 9 years ago
- The "DFUR" Splunk application and data that was presented at the 2020 SANS DFIR Summit.☆13Sep 9, 2020Updated 5 years ago
- A command-line tool and Python library for parsing Windows Master File Table ($MFT) and importing the results into Elasticsearch.☆13Jun 3, 2026Updated last week
- Linux BPF plugins for Volatility3☆23Jan 19, 2024Updated 2 years ago
- Digital Forensics and Incident Response notes and Autopsy tool walkthrough☆11Feb 3, 2022Updated 4 years ago
- Matt's DFIR blog☆14Jul 28, 2025Updated 10 months ago
- Jupyter Notebooks for Digital Forensics & Incident Response☆10Nov 23, 2021Updated 4 years ago
- A Windows tool that converts LDIF files to BloodHound CE☆32Dec 20, 2025Updated 5 months ago
- Capstone Engine bindings on PHP 7.0+☆12Sep 22, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Library of threat hunts to get any user started!☆51Sep 4, 2020Updated 5 years ago
- Documentation for DFIR ORC, artefact collection tool dedicated to Microsoft Windows☆12May 4, 2026Updated last month
- Various tools and scripts☆43Nov 30, 2022Updated 3 years ago
- VNC Snapshot is a command line utility for VNC (Virtual Network Computing) available from RealVNC, among others. The utility allows one t…☆19Jul 13, 2017Updated 8 years ago
- Demonstrate the behavior of the tunnel cache on Windows☆11Aug 13, 2019Updated 6 years ago
- RNNs for sql-injection detection 🔍. built in python with tensorflow and keras☆12Sep 14, 2024Updated last year
- MBR manipulation tool☆18Jan 13, 2014Updated 12 years ago