Scripts and tools created for appx analysis talk (Magnet summit 2019)
☆19Feb 26, 2024Updated 2 years ago
Alternatives and similar repositories for Appx-Analysis
Users that are interested in Appx-Analysis are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- macOS Artifact Intelligence Tool☆13Apr 30, 2019Updated 6 years ago
- 010 template for apfs☆27Feb 26, 2021Updated 5 years ago
- CTI-URLScan is a command line tool to enable analysts to search URLscan.io submissions. Pull screenshot and DOM content. As well as, auto…☆11Mar 2, 2021Updated 5 years ago
- BadUSB for the Arduboy game console☆12Jul 15, 2022Updated 3 years ago
- Do DFIR work in a Windows Sandbox☆21Updated this week
- Forensic framework to build tools that can be reused in multiple projects without changing anything☆31Updated this week
- Windows Forensics Salt States☆21Updated this week
- PoC Exploiting Permission Bypass in Android's Download Provider (CVE-2018-9468)☆20Jan 15, 2020Updated 6 years ago
- An efficient tool for extracting files, directories, and alternate data streams directly from NTFS image files.☆22Mar 12, 2026Updated last week
- ☆12Mar 27, 2024Updated last year
- Scripts to extract compound bplists in the iOS -> KnowledgeC.db -> structuredmetadata table.☆27May 12, 2019Updated 6 years ago
- Tool to automate the whole process of environment in android audits☆14Apr 30, 2019Updated 6 years ago
- A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.☆12Jun 23, 2025Updated 9 months ago
- parser for Google search strings☆40Sep 14, 2019Updated 6 years ago
- Extract common Windows artifacts from source images and VSCs☆65May 10, 2021Updated 4 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Mar 3, 2019Updated 7 years ago
- CScorza Web - Insieme di tutti gli strumenti OSINT e Digital Forensics☆23Updated this week
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆18Oct 7, 2016Updated 9 years ago
- Automatic unlock LUKS root-dev on Linux boot using USB key☆17Mar 1, 2024Updated 2 years ago
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago
- A small tool to easily mount APFS image on macOS for forensics.☆16Jul 30, 2020Updated 5 years ago
- Backstage Parser☆33Jun 23, 2022Updated 3 years ago
- Python library for parsing AccessData AD1 images☆34Jun 1, 2023Updated 2 years ago
- A lightweight C++/C AFF4 reader library☆14Feb 5, 2026Updated last month
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Mar 12, 2019Updated 7 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Feb 6, 2024Updated 2 years ago
- Standalone POCs/Exploits from various sources for Jok3r☆29Jun 23, 2021Updated 4 years ago
- ☆20Nov 20, 2021Updated 4 years ago
- Library and tools to access the GUID Partition Table (GPT) volume system format☆11Dec 20, 2025Updated 3 months ago
- Read and extract data from macOS spotlight databases☆129Dec 7, 2025Updated 3 months ago
- A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.☆117Jan 26, 2022Updated 4 years ago
- An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.☆28Mar 12, 2026Updated last week
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆343Jun 25, 2022Updated 3 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆19Jun 6, 2022Updated 3 years ago
- High-level Threat Intelligence playbooks☆20Mar 6, 2021Updated 5 years ago
- Parses USB connection artifacts from offline Registry hives☆107Feb 8, 2026Updated last month
- USN to JSON☆22Apr 4, 2020Updated 5 years ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- This repository contains a variety of plugins and scripts, related to the Volatility framework.☆19Feb 9, 2025Updated last year