lancemueller / EnCase-EnScripts
General repository for compiled and uncompiled EnCase EnScripts
☆47Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for EnCase-EnScripts
- This repository is a collection of EnScript code samples for use in the OpenText EnCase application.☆52Updated 3 months ago
- Different DFIR and CTI utilities☆36Updated 4 years ago
- Repository of scripts/tools that may be useful in Security Operations Centres (SOC)☆54Updated 3 years ago
- Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.☆65Updated 4 years ago
- Example programs used in the automating DFIR series☆64Updated 5 years ago
- Page File analysis tools.☆124Updated 8 years ago
- Tools for DFIR☆117Updated 6 years ago
- MantaRay Automated Computer Forensic Triage Tool☆63Updated 5 years ago
- A list of Autopsy awesome plugins.☆65Updated 2 years ago
- Parses IE's Automatic Crash Recovery Files☆16Updated 7 years ago
- Dump of organized knowledge on DFIR☆132Updated 3 years ago
- Cuckoo Sandbox is an automated dynamic malware analysis system☆106Updated 4 years ago
- Volatility plugins developed and maintained by the community☆21Updated last month
- Extract common Windows artifacts from source images and VSCs☆65Updated 3 years ago
- Volatility plugins created by the author☆44Updated 9 years ago
- Set of Yara rules for finding files using magics headers☆135Updated 4 years ago
- Tools from WFA 4/e, timeline tools, etc.☆132Updated 8 months ago
- Scripts to facilitate filtering with Plaso☆125Updated 4 years ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆44Updated 2 years ago
- Collecting & Hunting for IOCs with gusto and style☆238Updated 3 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 3 years ago
- Script that checks for available updates for the most commonly used Digital Forensics tools☆57Updated 3 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆121Updated 3 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆42Updated 8 years ago
- Binaries for the log2timeline projects and dependencies☆38Updated last month
- ☆82Updated 8 years ago
- Three datasets to practice Threat Hunting against.☆40Updated 10 months ago
- PE Import Hash Generator☆74Updated 7 years ago
- Automagically extract forensic timeline from volatile memory dump☆123Updated 6 months ago
- FRAC and RIFT☆17Updated 5 years ago