securitywithoutborders / guide-to-quick-forensics
☆60Updated 4 years ago
Related projects: ⓘ
- Forensic Analysis of Signal, Wickr, Threema - Decrypt all databases and multimedia files☆68Updated 2 years ago
- Windows Forensics Environment Builder☆106Updated 3 months ago
- Backstage Parser☆32Updated 2 years ago
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆29Updated last year
- Index and collection of MVT compatibile indicators of compromise.☆60Updated 4 months ago
- FIT is a Python3 application for forensic acquisition of contents like web pages, emails, social media, etc. directly from the internet.☆60Updated last month
- Resources provided by the community that can serve to be useful for Law Enforcement worldwide☆94Updated last month
- Short scripts which use the registry to enable or disable write-blocking for removable disks☆28Updated 11 months ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆86Updated last month
- xLEAPP - Merging of iLEAPP/RLEAPP/vLEAPP, ALEAPP, cLEAPP☆47Updated this week
- A collaboration effort by the DFIR community to provide definitions (sometimes multiple) for common forensic terms!☆25Updated last year
- DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based o…☆71Updated this week
- A curated list of KAPE-related resources☆154Updated 4 months ago
- This toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices☆135Updated 4 years ago
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆49Updated 2 years ago
- Digital Forensics Incident Response and Detection engineering: Análisis forense de artefactos comunes y no tan comunes. Técnicas anti-for…☆68Updated last week
- Gmail URL Decoder is an Open Source Python tool that can be used against plaintext or arbitrary raw data files in order to find, extract,…☆52Updated 4 years ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆86Updated last week
- Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.☆40Updated 2 weeks ago
- Public tools, scripts or code snippets that can help when working with our products☆46Updated last week
- An IOC collection for the Cellebrite UFED forensic toolkit.☆18Updated 3 years ago
- Fast IOC and YARA Scanner☆72Updated 4 years ago
- TRACE is a digital forensic analysis tool that provides a user-friendly interface for investigating disk images.☆91Updated 2 weeks ago
- Major tools used for Digital Forensic Investigation, includes tools used for Image, Audio, Memory, Network and Disk Image data analysis. …☆68Updated 3 years ago
- Search a filesystem for indicators of compromise (IoC).☆66Updated 3 weeks ago
- WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.☆30Updated 10 months ago
- ☆27Updated 5 years ago
- Windows Forensics Salt States☆14Updated this week
- ☆20Updated 2 years ago
- Windows Forensic Environment (WinFE) - based on WinPE☆20Updated last year