sdckey / EnScript-Samples
This repository is a collection of EnScript code samples for use in the OpenText EnCase application.
☆52Updated 2 months ago
Related projects: ⓘ
- Example programs used in the automating DFIR series☆64Updated 5 years ago
- General repository for compiled and uncompiled EnCase EnScripts☆46Updated 3 years ago
- Different DFIR and CTI utilities☆35Updated 4 years ago
- Tools from WFA 4/e, timeline tools, etc.☆130Updated 6 months ago
- Extract common Windows artifacts from source images and VSCs☆65Updated 3 years ago
- "Evolving AppCompat/AmCache data analysis beyond grep"☆192Updated 3 years ago
- InvestigationPlaybookSpec☆72Updated 6 years ago
- Repository of scripts/tools that may be useful in Security Operations Centres (SOC)☆54Updated 3 years ago
- Analyze binaries collected in VMware Carbon Black EDR against Yara rules.☆36Updated last year
- This is a GUI (for Windows 64 bit) for a procedure to virtualize your EWF(E01), DD (raw), AFF disk image file without converting it, dire…☆50Updated 4 years ago
- Volatility plugins created by the author☆44Updated 8 years ago
- Yet another registry parser☆128Updated 2 years ago
- ☆39Updated 5 years ago
- Office365 Log Analysis Framework☆81Updated 5 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆72Updated 3 months ago
- Personal settings for X-Ways Forensics☆32Updated 2 years ago
- Scripts to facilitate filtering with Plaso☆124Updated 4 years ago
- Cuckoo Sandbox is an automated dynamic malware analysis system☆106Updated 4 years ago
- Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.☆64Updated 4 years ago
- The home of the BriMor Labs rdpieces Perl script that tries to rebuild parsed RDP Bitmap Cache images☆76Updated last year
- Dump of organized knowledge on DFIR☆132Updated 2 years ago
- a GUI Interface for DFIR Open Source Tools☆10Updated 9 years ago
- PowerShell script utilized to pull several forensic artifacts from a live Win7 and WinXP system without WINRM.☆49Updated 6 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆82Updated 3 years ago
- Page File analysis tools.☆124Updated 8 years ago
- Volatility plugins developed and maintained by the community☆21Updated 6 years ago
- Invoke-LiveResponse☆145Updated 2 years ago
- ☆41Updated 3 years ago
- CB API scripts for IR, administration, etc.☆33Updated 5 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 3 years ago