Git for me to put all my forensics stuff
☆23Sep 2, 2025Updated 5 months ago
Alternatives and similar repositories for 4n6_stuff
Users that are interested in 4n6_stuff are comparing it to the libraries listed below
Sorting:
- Parses IE's Automatic Crash Recovery Files☆16Feb 3, 2017Updated 9 years ago
- GUI for regripper☆11Mar 19, 2019Updated 6 years ago
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆10Jul 15, 2023Updated 2 years ago
- LNK to JSON☆14Mar 7, 2019Updated 6 years ago
- Small scripts and POCs related to digital forensics☆18Nov 1, 2022Updated 3 years ago
- Some dfir stuff☆31Jan 12, 2022Updated 4 years ago
- ☆61Jan 28, 2026Updated last month
- MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.☆20Feb 20, 2020Updated 6 years ago
- parser for Google search strings☆40Sep 14, 2019Updated 6 years ago
- geolocate ip addresses in IIS logs☆20Jan 8, 2025Updated last year
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- Windows Thingies in Python for live use.☆24Apr 22, 2019Updated 6 years ago
- ☆24Mar 12, 2025Updated 11 months ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 8 months ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆27Jan 2, 2023Updated 3 years ago
- Windows registry samples☆24Nov 18, 2018Updated 7 years ago
- Script for querying Google home devices☆11May 27, 2018Updated 7 years ago
- A simple utility for stripping out either the SHA-1, MD5 or CRC values alone from the NSRL hash database☆14Nov 19, 2021Updated 4 years ago
- Various scrips☆12Oct 19, 2022Updated 3 years ago
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Quick & Dirty DFIR scripts developed by Ebryx DFIR team to keep handy during field assignment☆14Jan 7, 2026Updated last month
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated last year
- Field guide to gather low-hanging fruits☆14Mar 20, 2025Updated 11 months ago
- Links to materials referenced in the SANS Tech Tuesday workshop June 30,2020☆29Oct 7, 2020Updated 5 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Jul 11, 2023Updated 2 years ago
- ☆17Apr 13, 2018Updated 7 years ago
- Automatic, fast parsing of browser artifacts☆17Jan 4, 2025Updated last year
- Tools from WFA 4/e, timeline tools, etc.☆145Feb 29, 2024Updated 2 years ago
- Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs☆101Jun 2, 2021Updated 4 years ago
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆44Feb 21, 2026Updated last week
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆58Jun 24, 2025Updated 8 months ago
- Python script to walk a folder or a zip file for SQLite Databases☆37Sep 20, 2023Updated 2 years ago
- Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE☆33May 25, 2024Updated last year
- StickyParser - Sticky Notes Forensic. A Windows Sticky Notes Praser (snt and plum.sqlite supported). Additional Feature: SQLite Recovery …☆20Jul 18, 2023Updated 2 years ago
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- A repository of output using KAPE (!EZParser Module) for various publicly available forensic images!☆17Aug 31, 2024Updated last year
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆23Aug 21, 2019Updated 6 years ago