Windows file metadata / forensic tool.
☆18Oct 12, 2025Updated 4 months ago
Alternatives and similar repositories for fmd
Users that are interested in fmd are comparing it to the libraries listed below
Sorting:
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Scripts to help and speed up reversing activities☆13Jan 12, 2026Updated last month
- Safe Rust API to libesedb☆12Sep 10, 2025Updated 5 months ago
- Python Library for ConfigExtractor☆15Updated this week
- Yet another fseventsd parser for macOS forensics☆12Jul 20, 2024Updated last year
- ☆23Mar 17, 2024Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆98Oct 4, 2022Updated 3 years ago
- lnk_parser is a full rust implementation to parse windows LNK files☆23Feb 17, 2026Updated last week
- Harvest Linux forensic data for operational triage of an event.☆51Nov 30, 2025Updated 3 months ago
- Memory Scaner☆65Sep 9, 2022Updated 3 years ago
- Avocado is a powerful C2 framework written in Python with stageless implants in Rust. Avocado's implant runs seamlessly on both Linux and…☆27Feb 15, 2026Updated 2 weeks ago
- Scripts, Yara rules and other files developed during malware investigations☆27Aug 19, 2022Updated 3 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆66Jul 7, 2022Updated 3 years ago
- malleable profile generator GUI for Havoc☆55Apr 28, 2023Updated 2 years ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆68Apr 29, 2024Updated last year
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Feb 6, 2024Updated 2 years ago
- Google Cloud Security Command Center to Azure Sentinel Connector☆19Jul 15, 2023Updated 2 years ago
- Security Content for the PEAK Threat Hunting Framework☆44Feb 15, 2024Updated 2 years ago
- ☆36Jan 11, 2023Updated 3 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆86Dec 17, 2025Updated 2 months ago
- Offline amnesic live Linux distribution☆14Mar 8, 2025Updated 11 months ago
- un sensor pour récupérer les informations des prochaines marées☆12Jan 27, 2026Updated last month
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 5 months ago
- A small crappy script I wrote that converts the Sigma Windows Process Creation events to KQL via PySigma. Designed for CI/CD☆10Nov 7, 2023Updated 2 years ago
- ☆13Mar 28, 2024Updated last year
- In this training will be covered about a very basic step for malware analysis. Using several free tools to recognize malware behavior. Si…☆12May 25, 2016Updated 9 years ago
- Are WiFi Passwords we use these day's actually safe?☆10Mar 7, 2017Updated 8 years ago
- Sigma Queries turned into KQL for Defender using pysigma☆12Jun 20, 2024Updated last year
- Library for extracting fields from Sigtran TCAP/INAP messages☆11Feb 17, 2026Updated last week
- A minimalist Hugo theme that helps you build fully responsive documentation websites for small projects.☆10Oct 19, 2021Updated 4 years ago
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆93Sep 7, 2023Updated 2 years ago
- Short Python script for parsing Defender VDM signature files.☆10Sep 22, 2024Updated last year
- A simple tool designed to create Atomic Red Team tests with ease.☆49Mar 11, 2025Updated 11 months ago
- Incident Response documents and tooling☆112Dec 23, 2025Updated 2 months ago
- Headless AI agent for deterministic reverse engineering.☆91Dec 9, 2025Updated 2 months ago
- ☆16Aug 25, 2025Updated 6 months ago
- A Clojure library for using cron expressions☆12May 30, 2022Updated 3 years ago
- A core.matrix implementation using NumPy via libpython-clj☆12Dec 19, 2020Updated 5 years ago
- A powerful prompt template engine built upon Jinja☆12Oct 22, 2025Updated 4 months ago