nccgroup / MetadataPlus
A tool to use novel locations to extract metadata from Office documents.
☆62Updated last year
Alternatives and similar repositories for MetadataPlus:
Users that are interested in MetadataPlus are comparing it to the libraries listed below
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆51Updated 3 months ago
- ☆34Updated last year
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆32Updated 4 months ago
- Linux #rootkit and #malware revealer☆24Updated 7 months ago
- Yara Rules for Modern Malware☆74Updated last year
- ☆19Updated 2 months ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated last year
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆68Updated last year
- Data breaches, Leaks, Malwares Forums List <Please Use Vpn/TOR don't click on Link directly bad OPSEC>☆48Updated 3 weeks ago
- C2 Active Scanner☆55Updated 9 months ago
- ☆80Updated 4 months ago
- A C# based tool for analysing malicious OneNote documents☆111Updated last year
- information about ransomware groups (Ransomware Analysis Notes)☆36Updated last year
- Linux Baseline and Forensic Triage Tool - BETA☆54Updated 2 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated 11 months ago
- Reads and prints information from the website MalAPI.io☆19Updated 2 years ago
- Contains compiled binaries of Volatility☆33Updated 2 months ago
- Quick ESXi Log Parser☆17Updated 2 months ago
- IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.☆61Updated last year
- Rules Shared by the Community from 100 Days of YARA 2023☆76Updated last year
- Tools and scripts to deploy and manage OpenRelik instances☆13Updated last month
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆23Updated last week
- A home for detection content developed by the delivr.to team☆67Updated last month
- Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.☆60Updated 8 months ago
- ☆24Updated 2 years ago
- This aims to be a collection of tools to forensically analyze Active Directory databases☆22Updated 2 weeks ago
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆35Updated 2 years ago
- A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…☆83Updated 8 months ago
- Reads and prints information from the website MalAPI.io☆38Updated 3 years ago