Pinned Repositories
acquire
acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
dissect.esedb
A Dissect module implementing a parser for Microsofts Extensible Storage Engine Database (ESEDB), used for example in Active Directory, Exchange and Windows Update.
dissect.hypervisor
A Dissect module implementing parsers for various hypervisor disk, backup and configuration files.
dissect.sql
A Dissect module implementing a parsers for the SQLite database file format, commonly used by applications to store configuration data.
dissect.target
The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access to various data sources inside disk images or file collections (a.k.a. targets).
flow.record
Recordization library
iris-client
Python client for DFIR-IRIS
iris-web
Collaborative Incident Response platform
throwphish
Automatically deploy preconfigured SSL ready GoPhish instances into Azure using Terraform.
web-csirt
https://www.divd.nl and https://csirt.divd.nl websites
DevJoost's Repositories
DevJoost/acquire
acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
DevJoost/dissect.esedb
A Dissect module implementing a parser for Microsofts Extensible Storage Engine Database (ESEDB), used for example in Active Directory, Exchange and Windows Update.
DevJoost/dissect.hypervisor
A Dissect module implementing parsers for various hypervisor disk, backup and configuration files.
DevJoost/dissect.sql
A Dissect module implementing a parsers for the SQLite database file format, commonly used by applications to store configuration data.
DevJoost/dissect.target
The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access to various data sources inside disk images or file collections (a.k.a. targets).
DevJoost/flow.record
Recordization library
DevJoost/iris-client
Python client for DFIR-IRIS
DevJoost/iris-web
Collaborative Incident Response platform
DevJoost/throwphish
Automatically deploy preconfigured SSL ready GoPhish instances into Azure using Terraform.
DevJoost/web-csirt
https://www.divd.nl and https://csirt.divd.nl websites