A tool to use novel locations to extract metadata from Office documents.
☆64Jun 20, 2023Updated 2 years ago
Alternatives and similar repositories for MetadataPlus
Users that are interested in MetadataPlus are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Windows Forensics Salt States☆22Jun 12, 2026Updated last week
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Jun 27, 2023Updated 2 years ago
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆27Jan 2, 2023Updated 3 years ago
- Forensic tool for extracting and analyzing Google DriveFS cached files and metadata.☆20May 9, 2025Updated last year
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Yet another fseventsd parser for macOS forensics☆12Jul 20, 2024Updated last year
- Script to process PDF files☆22May 23, 2025Updated last year
- A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-system…☆28Aug 26, 2023Updated 2 years ago
- ☆31Feb 12, 2026Updated 4 months ago
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆27Jul 27, 2022Updated 3 years ago
- Python script for carving Bitlocker VMK keys☆26Feb 4, 2026Updated 4 months ago
- Vault of Windows Registry forensic artifacts☆30Nov 12, 2025Updated 7 months ago
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- Enumerate information from NTLM authentication enabled web endpoints 🔎☆33Aug 16, 2023Updated 2 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated 2 years ago
- StickyParser - Sticky Notes Forensic. A Windows Sticky Notes Praser (snt and plum.sqlite supported). Additional Feature: SQLite Recovery …☆21Jul 18, 2023Updated 2 years ago
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 4 years ago
- This is to edit a training forensic image file (raw/dd) and zero out all the unnecessary files.☆11Jun 21, 2025Updated 11 months ago
- ☆25Jul 23, 2024Updated last year
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Jan 9, 2023Updated 3 years ago
- ☆23Mar 12, 2025Updated last year
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆18Jun 10, 2026Updated last week
- GUI for regripper☆11Mar 19, 2019Updated 7 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- 🐻❄️ 🏹 Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.☆14May 22, 2024Updated 2 years ago
- ☆38Jan 7, 2025Updated last year
- Python tool for kidnapping Chrome cookies from a MacOS target☆22Oct 5, 2022Updated 3 years ago
- Returns Logs Events And Properties Parser☆131Updated this week
- Forensic Artifact Collection Tool for macOS☆119Jul 28, 2025Updated 10 months ago
- ☆21Jan 28, 2026Updated 4 months ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆45May 12, 2021Updated 5 years ago
- A python script developed to process Windows memory images based on triage type.☆266Nov 25, 2023Updated 2 years ago
- Windows Persistence Toolkit in C#☆37Sep 23, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Python emulator for Excel XLM macros.☆18May 25, 2020Updated 6 years ago
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆94Sep 7, 2023Updated 2 years ago
- ☆28Oct 15, 2025Updated 8 months ago
- A small util to brute-force prefetch hashes☆77Jun 24, 2022Updated 3 years ago
- geolocate ip addresses in IIS logs☆21May 10, 2026Updated last month
- USN Journal full path builder☆69Apr 16, 2026Updated 2 months ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆12May 6, 2026Updated last month