This repository is a collection of EnScript code samples for use in the OpenText Endpoint Forensic and OpenText Endpoint Investigator applications (formerly EnCase).
☆54Jul 14, 2025Updated 7 months ago
Alternatives and similar repositories for EnScript-Samples
Users that are interested in EnScript-Samples are comparing it to the libraries listed below
Sorting:
- General repository for compiled and uncompiled EnCase EnScripts☆46Mar 11, 2021Updated 4 years ago
- a GUI Interface for DFIR Open Source Tools☆10Jun 16, 2015Updated 10 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- NTFS file system specimens☆13Jul 3, 2023Updated 2 years ago
- SysScout is a fully encapsulated script that quickly and easily pulls local machine information from Linux-Based systems. A simple, easy…☆13Oct 20, 2017Updated 8 years ago
- Bringing DevOps to Forensics☆34Feb 4, 2015Updated 11 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- Resources for HFS+ Forensics☆37Nov 15, 2015Updated 10 years ago
- This is a GUI (for Windows 64 bit) for a procedure to virtualize your EWF(E01), DD (raw), AFF disk image file without converting it, dire…☆54Oct 15, 2019Updated 6 years ago
- Python library for parsing AccessData AD1 images☆33Jun 1, 2023Updated 2 years ago
- A tool for fetching DFIR and other GitHub tools.☆25Aug 2, 2025Updated 6 months ago
- MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.☆20Feb 20, 2020Updated 6 years ago
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Mar 12, 2019Updated 6 years ago
- Extract compressed memory pages from page-aligned data☆47Sep 25, 2018Updated 7 years ago
- A DFVFS Backed Forensic Viewer☆42Apr 13, 2020Updated 5 years ago
- Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.☆22Oct 31, 2018Updated 7 years ago
- bitCollector - DFIR (Digital Forensics and Incident Response) Triage Collector☆13Aug 18, 2025Updated 6 months ago
- USN to JSON☆22Apr 4, 2020Updated 5 years ago
- Windows Event Log Knowledge Base☆31Dec 23, 2025Updated 2 months ago
- Open source Python library for NTFS analysis☆84Dec 22, 2017Updated 8 years ago
- Small and highly portable detection tests.☆12Oct 12, 2017Updated 8 years ago
- A utility to force query DNS over DoH off of CloudFlare API when DNS block is in place☆10Aug 26, 2018Updated 7 years ago
- An updated C# port of X-Ways X-Tensions API.☆11Mar 12, 2018Updated 7 years ago
- iOS forensics utility☆12May 8, 2018Updated 7 years ago
- A book about how to conduct digital forensic investigations with free and open source tools.☆11Apr 30, 2014Updated 11 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- Mimikatz embedded as classes☆28Oct 25, 2021Updated 4 years ago
- Queries for parsed spotlight database in sqlite☆13Dec 29, 2020Updated 5 years ago
- Powerful commandline $MFT record editor.☆25Aug 15, 2015Updated 10 years ago
- A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis☆28Aug 6, 2025Updated 6 months ago
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆343Jun 25, 2022Updated 3 years ago
- A tool to parse Firefox and Chrome HSTS databases into forensic artifacts!☆25Jan 8, 2026Updated last month
- Digitalis's Security Lab☆10Mar 10, 2022Updated 3 years ago
- Python library for easy handling of disk-images☆12Feb 11, 2026Updated 2 weeks ago
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Jan 9, 2023Updated 3 years ago
- This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.☆15Jul 13, 2023Updated 2 years ago
- Simple tool to extract icons from a pe file and other useful information☆13Jun 22, 2018Updated 7 years ago
- ☆11Mar 12, 2021Updated 4 years ago