Windows file metadata / forensic tool.
☆19Oct 12, 2025Updated 6 months ago
Alternatives and similar repositories for fmd
Users that are interested in fmd are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Manage Your Large Team of Consultants☆11Sep 18, 2025Updated 7 months ago
- Yet another fseventsd parser for macOS forensics☆12Jul 20, 2024Updated last year
- lnk_parser is a full rust implementation to parse windows LNK files☆23Feb 17, 2026Updated 2 months ago
- A set of tools and procedures for automating NSM and NIDS deployments in AWS☆15Oct 16, 2020Updated 5 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Memory Scaner☆65Sep 9, 2022Updated 3 years ago
- Rust crate for accessing keys, values, and data stored in Windows hive (registry) files.☆54Jan 21, 2025Updated last year
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Jul 23, 2020Updated 5 years ago
- File Capability Extractor☆15Jul 12, 2025Updated 9 months ago
- Parsers for common structures across windows formats.☆12Aug 23, 2023Updated 2 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Jan 6, 2021Updated 5 years ago
- Scanner for certain IoCs☆11Jan 29, 2025Updated last year
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Jan 9, 2023Updated 3 years ago
- Harvest Linux forensic data for operational triage of an event.☆51Nov 30, 2025Updated 5 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Scripts to help and speed up reversing activities☆13Jan 12, 2026Updated 3 months ago
- Jar2Exe extraction tool☆15Dec 28, 2022Updated 3 years ago
- ☆23Mar 17, 2024Updated 2 years ago
- Forensic framework to build tools that can be reused in multiple projects without changing anything☆31Mar 19, 2026Updated last month
- A pure PowerShell/ .NET DFIR capability that dumps the Windows SRUM (System Resource Usage Monitor) database to CSVs for analysis.☆14Oct 21, 2021Updated 4 years ago
- Scripts and integrations for OSSEC☆41Mar 18, 2016Updated 10 years ago
- Simple PowerShell script to enable process scanning with Yara.☆99Oct 4, 2022Updated 3 years ago
- Programmatically access a TLS certificate chain in C++ and C#☆12Oct 27, 2018Updated 7 years ago
- Windows.EDB Browser☆61Mar 6, 2023Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Aralez is a triage tool for Windows and Linux that automates the collection of system information, network/process data, and files.☆24Updated this week
- C# implementation of Out-Minidump.ps1☆10Jul 13, 2018Updated 7 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆66Jul 7, 2022Updated 3 years ago
- Incident Response documents and tooling☆115Dec 23, 2025Updated 4 months ago
- KustoHawk is a lightweight incident triage and response tool designed for effective incident response in Microsoft Defender XDR and Micro…☆149Apr 1, 2026Updated last month
- ☆10Jul 3, 2021Updated 4 years ago
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 7 months ago
- Bro script module for detecting malware using domain generation algorithms.☆13Feb 22, 2018Updated 8 years ago
- A library to parse macOS FsEvents☆25Aug 28, 2022Updated 3 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Python Library for ConfigExtractor☆16Feb 24, 2026Updated 2 months ago
- Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more☆30Mar 31, 2026Updated last month
- Tools for macOS Forensic Bootable media☆16May 20, 2020Updated 5 years ago
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- Releases for the Zui Insiders app.☆23Feb 17, 2025Updated last year
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆89Mar 11, 2026Updated last month
- A simple utility for stripping out either the SHA-1, MD5 or CRC values alone from the NSRL hash database☆14Nov 19, 2021Updated 4 years ago