woanware / ForensicUserInfoLinks
Extracts Windows user info including the password hashes
☆40Updated 9 years ago
Alternatives and similar repositories for ForensicUserInfo
Users that are interested in ForensicUserInfo are comparing it to the libraries listed below
Sorting:
- Windows anti-forensics USB monitoring tool.☆71Updated 2 years ago
- Backstage Parser☆32Updated 3 years ago
- Windows 10 Live Information viewer☆36Updated 3 years ago
- Tools for parsing Forensic images☆41Updated 6 years ago
- Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…☆41Updated 2 years ago
- A DFVFS Backed Forensic Viewer☆40Updated 5 years ago
- Various short scripts and tools used for Digital Forensics☆14Updated 5 months ago
- ☆32Updated 10 months ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- Parser for Sdba memory pool tags☆19Updated 4 years ago
- Fast incident overview☆40Updated 8 years ago
- ☆45Updated 2 years ago
- Hashes of infamous malware☆26Updated 2 years ago
- Forensic Scanner☆41Updated 12 years ago
- Manipulate timestamps on NTFS☆52Updated 10 years ago
- Git for me to put all my forensics stuff☆22Updated 2 weeks ago
- unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Andro…☆37Updated 3 months ago
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆28Updated 2 years ago
- Submits multiple domains to VirusTotal API☆60Updated 3 years ago
- GUI for regripper☆11Updated 6 years ago
- A list of Autopsy awesome plugins.☆75Updated 3 years ago
- Universal Radio Hacker: investigate wireless protocols like a boss 📡😎☆17Updated 5 years ago
- Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs☆93Updated 4 years ago
- RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.☆10Updated 4 years ago
- CyberChef update scripts in PowerShell & Bash☆16Updated last year
- Emulates the Sysinternals Autoruns tool, but for DFIR purposes e.g. multi user processing☆55Updated 6 years ago
- Finds event logs between two time points. Useful for helpdesk/support/malware analysis.☆47Updated 6 years ago
- A tool to parse Firefox and Chrome HSTS databases into forensic artifacts!☆26Updated 2 months ago
- Incident Response Triage - Windows Evidence Collection for Forensic Analysis☆134Updated 9 years ago