mnrkbys / ma2tl

Related projects ⓘ

Alternatives and complementary repositories for ma2tl

• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆75Updated 5 months ago
• mnrkbys / macosac
  Forensic Artifact Collection Tool for macOS
  ☆98Updated last month
• MattETurner / DFIRlogbook
  Logbook for Digital Forensics and Incident Response
  ☆49Updated 3 months ago
• markmckinnon / cLeapp
  Chrome Logs Events and Protobuf Parser
  ☆34Updated last year
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆49Updated last year
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆67Updated last year
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆56Updated last year
• CyberCX-DFIR / usnjrnl_rewind
  USN Journal full path builder
  ☆36Updated last month
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• docker-forensics-toolkit / toolkit
  A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
  ☆94Updated 8 months ago
• abrignoni / WLEAPP
  WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.
  ☆31Updated 11 months ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆101Updated 4 months ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆73Updated 2 years ago
• gajos112 / Digital-Forensics
  ☆36Updated 3 years ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆68Updated 11 months ago
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆91Updated this week
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆62Updated 9 months ago
• AndrewRathbun / KAPE-EZToolsAncillaryUpdater
  A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…
  ☆53Updated last year
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆93Updated 11 months ago
• AmgdGocha / DriveFS-Sleuth
  DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based o…
  ☆73Updated 3 weeks ago
• blueteam0ps / AllthingsTimesketch
  This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
  ☆94Updated last year
• stark4n6 / SQLiteWalker
  Python script to walk a folder or a zip file for SQLite Databases
  ☆35Updated last year
• OMENScan / AChoirX
  ReWrite of AChoir in Go for Cross Platform
  ☆34Updated 3 weeks ago
• andreafortuna / malhunt
  Hunt malware with Volatility
  ☆47Updated 6 months ago
• CrowdStrike / xwf-yara-scanner
  ☆84Updated 8 months ago
• keydet89 / RegRipper4.0
  RegRipper4.0
  ☆39Updated last year
• herosi / triage-collector
  ☆21Updated last month
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆85Updated 10 months ago
• mattreduce / cti-self-study
  Track progress and keep notes while working through likethecoins' CTI Self Study Plan
  ☆28Updated 2 years ago