A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and reactions from a Microsoft Teams IndexedDB LevelDB database.
☆117Jan 19, 2026Updated 2 months ago
Alternatives and similar repositories for forensicsim
Users that are interested in forensicsim are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…☆230Jan 6, 2026Updated 2 months ago
- Python web app for previewing data in a Chrome Profile Folder☆24Jul 1, 2024Updated last year
- Parser fo macOS/iOS FSEvents Logs☆43May 6, 2024Updated last year
- USN Journal full path builder☆67Sep 16, 2024Updated last year
- Autopsy Module to analyze Registry Hives☆16Feb 18, 2022Updated 4 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆171Mar 20, 2026Updated last week
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆64Dec 18, 2024Updated last year
- DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based o…☆88Dec 20, 2024Updated last year
- Autopsy NBM Plugins☆18Jul 9, 2023Updated 2 years ago
- ☆35Aug 4, 2018Updated 7 years ago
- Carve file metadata from NTFS index ($I30) attributes☆71Feb 3, 2024Updated 2 years ago
- Search Index Database Reporter☆132Oct 28, 2025Updated 4 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆215Dec 2, 2025Updated 3 months ago
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- Parses USB connection artifacts from offline Registry hives☆107Feb 8, 2026Updated last month
- This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.☆21Sep 30, 2022Updated 3 years ago
- mister-skinnylegs is an open plugin framework for parsing website/webapp artifacts in browser data. It currently provides a command line …☆20Nov 14, 2025Updated 4 months ago
- Autopsy Python Plugins☆375Aug 12, 2025Updated 7 months ago
- Evtx Log (xml) Browser☆57Mar 12, 2023Updated 3 years ago
- A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.☆107Mar 12, 2026Updated 2 weeks ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆41May 3, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- A list of Autopsy awesome plugins.☆76Jan 20, 2022Updated 4 years ago
- Forensics triage tool relying on Volatility and Foremost☆25Dec 3, 2023Updated 2 years ago
- ☆49Feb 20, 2026Updated last month
- A cross platform parser for Apple UnifiedLogs!☆336Mar 8, 2026Updated 2 weeks ago
- Tools and scripts to deploy and manage OpenRelik instances☆16Mar 3, 2026Updated 3 weeks ago
- WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.☆32Nov 16, 2023Updated 2 years ago
- EvtXHunt is an Autopsy plugin that is able to analyze Windows EVTX logs against a library of SIGMA rules.☆15Nov 7, 2021Updated 4 years ago
- ☆62Oct 12, 2024Updated last year
- A tool for fetching DFIR and other GitHub tools.☆26Aug 2, 2025Updated 7 months ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Linux Baseline and Forensic Triage Tool - BETA☆58Mar 10, 2026Updated 2 weeks ago
- Multicore EVTX to Elasticsearch ingestor for incident responders.☆14May 12, 2021Updated 4 years ago
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 4 years ago
- Takajō (鷹匠) is a Hayabusa results analyzer.☆154Feb 23, 2026Updated last month
- ☆24Mar 12, 2025Updated last year
- Autopsy plugin to extract information from the 'Your Phone' Windows 10 App☆14Jan 6, 2021Updated 5 years ago
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆254Oct 29, 2025Updated 4 months ago