Script to perform bulk local GeoIP lookups (ASN and geo) for IP addresses
☆103Jan 16, 2020Updated 6 years ago
Alternatives and similar repositories for ip2geo
Users that are interested in ip2geo are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.☆22May 19, 2022Updated 4 years ago
- OSSEM Modular☆27Jun 29, 2020Updated 5 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- Why hunt when you can seine?☆21May 12, 2015Updated 11 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- macOS Artifact Intelligence Tool☆13Apr 30, 2019Updated 7 years ago
- Set of utilities for getting information about Windows Events☆15Jun 5, 2018Updated 8 years ago
- A Powershell script for frequency analysis of separated values data files.☆17Jan 22, 2014Updated 12 years ago
- Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.☆20Nov 28, 2023Updated 2 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆24Jul 9, 2021Updated 4 years ago
- A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.☆118Jan 26, 2022Updated 4 years ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆40May 3, 2021Updated 5 years ago
- Configuration files for the SOF-ELK VM☆1,738Jun 7, 2026Updated last week
- Extract BITS jobs from QMGR queue and store them as CSV records☆74Feb 13, 2025Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆33Oct 25, 2021Updated 4 years ago
- Parses Java Cache IDX files☆40Feb 28, 2018Updated 8 years ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- A small tool to easily mount APFS image on macOS for forensics.☆17Jul 30, 2020Updated 5 years ago
- Konrads' Pen-Ultimate (Windows) Log File Parser☆14Dec 27, 2025Updated 5 months ago
- A python script developed to process Windows memory images based on triage type.☆266Nov 25, 2023Updated 2 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Jul 18, 2018Updated 7 years ago
- Tools from WFA 4/e, timeline tools, etc.☆146Feb 29, 2024Updated 2 years ago
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Oct 25, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- ☆28Mar 29, 2022Updated 4 years ago
- A quick way to perform a bulk whois query. Utilizes Team Cymru's service. Requires netcat.☆11Feb 11, 2012Updated 14 years ago
- CryptnetURLCacheParser is a tool to parse CryptAPI cache files☆22Aug 3, 2024Updated last year
- A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis☆29Aug 6, 2025Updated 10 months ago
- Tools to search through massive amounts of data☆21Oct 20, 2025Updated 7 months ago
- Network Block Device Server for windows with a DFIR/forensic focus.☆97Mar 31, 2017Updated 9 years ago
- A fork of The Sleuthkit with Pooled Storage and APFS support. See https://www.youtube.com/watch?v=k1XPillJ7aw for more info and usage.☆27Oct 27, 2019Updated 6 years ago
- $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility☆38Jul 18, 2024Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆59Jun 24, 2025Updated 11 months ago
- Quickly find encrypted files and files made-up of random data☆24Jun 20, 2019Updated 6 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆19Feb 26, 2024Updated 2 years ago
- SIFT Bootstrap Script☆145Jun 20, 2017Updated 8 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆37Jul 11, 2023Updated 2 years ago
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆20Jun 6, 2022Updated 4 years ago