shujianyang / btrForensics
Forensic Analysis Tool for Btrfs File System.
☆21Updated 6 years ago
Alternatives and similar repositories for btrForensics:
Users that are interested in btrForensics are comparing it to the libraries listed below
- ☆15Updated 6 years ago
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 3 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 3 years ago
- Digital Forensic Investigative Scripts☆75Updated 3 months ago
- A fork of The Sleuthkit with Pooled Storage and APFS support. See https://www.youtube.com/watch?v=k1XPillJ7aw for more info and usage.☆26Updated 5 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- Windows registry samples☆23Updated 6 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆45Updated 8 years ago
- Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…☆21Updated 5 years ago
- MantaRay Automated Computer Forensic Triage Tool☆63Updated 6 years ago
- Some rules, scripts of some use to us☆9Updated 3 months ago
- AFF4 Standard Documents☆28Updated 3 years ago
- Python Forensic and Log Analysis GUI☆24Updated 10 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Updated 7 years ago
- Decode security descriptors in $Secure on NTFS☆20Updated 2 years ago
- openioc_scan Volatility Framework plugin☆42Updated 8 years ago
- Binaries for the log2timeline projects and dependencies☆39Updated 5 months ago
- Virustotal Data to Timesketch☆17Updated 5 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 5 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 7 years ago
- CyCAT.org API back-end server including crawlers☆30Updated 2 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 7 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- first commit☆20Updated last year
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 5 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago
- Yara rules for detecting malware☆23Updated 5 months ago