Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.
☆52Jan 26, 2025Updated last year
Alternatives and similar repositories for Bitlocker_Key_Finder
Users that are interested in Bitlocker_Key_Finder are comparing it to the libraries listed below
Sorting:
- This is to edit a training forensic image file (raw/dd) and zero out all the unnecessary files.☆11Jun 21, 2025Updated 8 months ago
- MS Word (DOCx) Parsing Tool☆25Updated this week
- A tool for fetching DFIR and other GitHub tools.☆26Aug 2, 2025Updated 7 months ago
- Script to process PDF files☆21May 23, 2025Updated 9 months ago
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- Python script to walk a folder or a zip file for SQLite Databases☆37Sep 20, 2023Updated 2 years ago
- Making Maps for Investigators☆14Feb 13, 2026Updated last month
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆18Apr 30, 2025Updated 10 months ago
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆10Jul 15, 2023Updated 2 years ago
- Module(s) related to reading SEGB (fka "Biome") data from iOS, mascOS, etc.☆29Sep 9, 2025Updated 6 months ago
- Scripts to extract compound bplists in the iOS -> KnowledgeC.db -> structuredmetadata table.☆27May 12, 2019Updated 6 years ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆68Sep 13, 2023Updated 2 years ago
- ☆61Jan 28, 2026Updated last month
- DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based o…☆88Dec 20, 2024Updated last year
- A small util to brute-force prefetch hashes☆77Jun 24, 2022Updated 3 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- A C# (.NET 6) tool to compare the file signature of files recursively and inform the user of matches and mismatches☆16Nov 29, 2024Updated last year
- Hunt for SQLite files used by various applications☆30Mar 1, 2026Updated 2 weeks ago
- iOS Photos.sqlite queries that may help with decoding data stored in Photos.sqlite. These queries are based on testing, research and some…☆71Mar 19, 2024Updated 2 years ago
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 4 months ago
- Windows Forensics Salt States☆21Mar 11, 2026Updated last week
- CLBX file format☆20May 13, 2021Updated 4 years ago
- Automatic, fast parsing of browser artifacts☆17Jan 4, 2025Updated last year
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated last year
- Quick ESXi Log Parser☆30Oct 20, 2025Updated 5 months ago
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 4 years ago
- StickyParser - Sticky Notes Forensic. A Windows Sticky Notes Praser (snt and plum.sqlite supported). Additional Feature: SQLite Recovery …☆21Jul 18, 2023Updated 2 years ago
- ☆24Mar 12, 2025Updated last year
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- A repository of output using KAPE (!EZParser Module) for various publicly available forensic images!☆17Aug 31, 2024Updated last year
- Parses USB connection artifacts from offline Registry hives☆107Feb 8, 2026Updated last month
- Is a portable forensic tool for analyzing Windows logs, pre-organized according to the methodology outlined in this job: https://cybersec…☆15Jul 19, 2025Updated 8 months ago
- /ˈhäjˌpäj/ "a confused mixture."☆13Mar 5, 2026Updated 2 weeks ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆56Jul 2, 2023Updated 2 years ago
- A password list optimized for use on Android devices.☆11Jul 2, 2022Updated 3 years ago
- A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.☆117Jan 26, 2022Updated 4 years ago
- Forensic tool for extracting and analyzing Google DriveFS cached files and metadata.☆20May 9, 2025Updated 10 months ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 9 months ago