OMENScan

OMENScan's Stars

• blueteamvillage/Project-Obsidian-DC31

  Language:HTML162

• blueteamvillage/Project-Obsidian-DC30

  Language:HTML411

• blueteamvillage/Project-Obsidian-DC29

  Language:HTML2

• WithSecureLabs/chainsaw

  Rapidly Search and Hunt through Windows Forensic Artefacts

  Language:Rust2.9k260

• easttimor/aws-incident-response

  Language:HCL36357

• dr-anoroc/rawccopy

  Command line utility for copying files on NTFS using low level disk access

  Language:C3211

• MarkBaggett/srum-dump

  A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.

  Language:Python59596

• dylanaraps/pure-bash-bible

  📖 A collection of pure bash alternatives to external processes.

  Language:Shell36.5k3.3k

• chenerlich/FCL

  FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

  46278

• Lazza/RecuperaBit

  A tool for forensic file system reconstruction.

  Language:Python54075

• google/timesketch

  Collaborative forensic timeline analysis

  Language:Python2.6k588

• booboule/FastResponder

  Fork of the old Sekoialab Fast Responder

  Language:Python1

• Yelp/osxcollector

  A forensic evidence collection & analysis toolkit for OS X

  Language:Python1.9k242

• Invoke-IR/PowerForensics

  PowerForensics provides an all in one platform for live disk forensic analysis

  Language:C#1.4k274

• google/grr

  GRR Rapid Response: remote live forensics for incident response

  Language:Python4.8k762

• AJMartel/IRTriage

  Incident Response Triage - Windows Evidence Collection for Forensic Analysis

  Language:AutoIt13023

• win-acme/win-acme

  A simple ACME client for Windows (for use with Let's Encrypt et al.)

  Language:C#5.3k817

• rshipp/awesome-malware-analysis

  Defund the Police.

  11.9k2.6k

• sleuthkit/sleuthkit

  The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.

  Language:C2.6k608

• sleuthkit/autopsy

  Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera's memory card.

  Language:Java2.4k596

• Invoke-IR/ForensicPosters

  43581

• volatilityfoundation/volatility

  An advanced memory forensics framework

  Language:Python7.3k1.3k

• google/rekall

  Rekall Memory Forensic Framework

  Language:Python1.9k398

• jschicht/ExtractUsnJrnl

  Tool to extract the $UsnJrnl from an NTFS volume

  Language:AutoIt10520

• jschicht/RawCopy

  Commandline low level file extractor for NTFS

  Language:AutoIt27442