obsidianforensics / scripts
Small scripts and POCs related to digital forensics
☆17Updated 2 years ago
Alternatives and similar repositories for scripts:
Users that are interested in scripts are comparing it to the libraries listed below
- Attempt to replicate the functions of auto_rip by Corey Harrell in Python.☆13Updated 7 months ago
- Yara Scanner For IMAP Feeds and saved Streams☆28Updated 5 years ago
- Python bindings for Yeti's API☆18Updated last year
- MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.☆20Updated 5 years ago
- Python script to batch query the Tor Relays and Bridges☆36Updated 6 years ago
- A DFVFS Backed Forensic Viewer☆40Updated 4 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆16Updated last year
- Git for me to put all my forensics stuff☆21Updated 2 months ago
- A simple many-rules to many-files YARA scanner for incident response or malware zoos.☆26Updated 6 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Site for IWS book content☆18Updated 6 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆41Updated 6 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 6 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Updated 8 years ago
- Automated Memory Forensic☆35Updated 6 years ago
- Tools for parsing Forensic images☆41Updated 6 years ago
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- ☆14Updated 6 years ago
- Binaries for the log2timeline projects and dependencies☆39Updated 6 months ago
- Passive recon / OSINT automation script☆40Updated 6 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Updated 7 years ago
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Updated 6 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Updated 3 years ago
- ☆31Updated 4 months ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago
- PowerShell Memory Pulling script☆19Updated 10 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Updated 7 years ago
- Crack your macros like the math pros.☆33Updated 8 years ago