nccgroup / MetadataPlus
A tool to use novel locations to extract metadata from Office documents.
☆59Updated last year
Related projects: ⓘ
- C2 Active Scanner☆45Updated 3 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆49Updated 3 months ago
- Yara Rules for Modern Malware☆68Updated 6 months ago
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆61Updated 7 months ago
- Linux Baseline and Forensic Triage Tool - BETA☆51Updated 2 years ago
- Parses USB connection artifacts from offline Registry hives☆50Updated last week
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆67Updated last year
- Contains compiled binaries of Volatility☆28Updated 2 months ago
- A C# based tool for analysing malicious OneNote documents☆108Updated last year
- information about ransomware groups (Ransomware Analysis Notes)☆36Updated 8 months ago
- ☆34Updated 6 months ago
- ☆22Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated last year
- Detection rule validation☆41Updated 10 months ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆29Updated 2 months ago
- Reads and prints information from the website MalAPI.io☆38Updated 2 years ago
- Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.☆59Updated 2 months ago
- ShellSweeping the evil.☆49Updated 3 months ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆48Updated 5 months ago
- Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.☆40Updated last week
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆48Updated last year
- Data breaches, Leaks, Malwares Forums List <Please Use Vpn/TOR don't click on Link directly bad OPSEC>☆40Updated this week
- USN Journal full path builder☆36Updated this week
- ☆19Updated 2 years ago
- DEFCON 31☆57Updated 2 months ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆34Updated last year
- Logbook for Digital Forensics and Incident Response☆48Updated 2 months ago
- Regexplore is a Volatility plugin designed to mimic the functionality of the Registry Explorer plugins in EZsuite☆17Updated last year
- Public tools, scripts or code snippets that can help when working with our products☆46Updated last week
- ☆35Updated 3 years ago