forensic

There are 107 repositories under forensic topic.

dfir-iris/iris-web
Collaborative Incident Response platform
Language:Python1.2k 30 463215
sepinf-inc/IPED
IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners.
Language:Java1.1k 63 1.5k231
mthcht/ThreatHunting-Keywords
Awesome list of keywords and artifacts for Threat Hunting sessions
Language:PowerShell555 11 1360
A-YATTA/AMDH
Android Mobile Device Hardening
Language:Python206 6 424
kacos2000/Win10
Win 10/11 related research
Language:PowerShell183 23 332
kacos2000/WindowsTimeline
Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)
Language:PowerShell183 12 221
imakashsahu/Third-Eye-Final-Year-Project
Forensic Face Sketch Construction and Recognition (My B.E. Final Year Project)
175 4 1225
Am0rphous/Awesome
Awesome collection of resources 😎 Work in progress🔥
Language:Shell124 3 027
kacos2000/Queries
SQLite queries
Language:PowerShell80 8 011
karthik997/Forensic_Toolkit
Major tools used for Digital Forensic Investigation, includes tools used for Image, Audio, Memory, Network and Disk Image data analysis. Helpful resource for CTF Challenges.
79 2 019
kh4sh3i/Malware-Analysis
A curated list of awesome malware analysis tools and resources
73 4 011
bitranox/fingerprint
Monitoring Registry and File Changes in Windows
Language:Python71 2 111
mnrkbys/fjta
FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (EXT4, XFS) journals (not systemd-journald), generates timelines, and detects suspicious activities.
Language:Python62 1 05
kacos2000/Prefetch-Browser
Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
Language:PowerShell61 2 15
CIRCL/forensic-tools
CIRCL system forensic tools or a jumble of tools to support forensic
Language:Python42 13 07
Srinivas11789/urlRecon
:pencil: urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server
Language:Python36 2 57
kacos2000/Jumplist-Browser
Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser
Language:PowerShell32 2 02
naemazam/logForenix
log Forenix 🕵️- Your Linux Forensic Artifacts Collector Tool! 🚀
Language:Shell31 1 01
ForensicRS/forensic-rs
Forensic framework to build tools that can be reused in multiple projects without changing anything
Language:Rust27 3 02
securityjoes/Crowdstrike-Deploy
The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
Language:Shell22 3 10
kawaiipantsu/maltego-darknet-transforms
Maltego DarkNET Transforms - These are all PHP local transforms that i am trying to maintain and deploy in a easy way! The name may lead to think it's all about the darknet but this is not all true i made all sorts of transforms.
Language:PHP18 2 43
MrOctopus/pyWhatsUpp
A forensic tool to automatically extract as many artifacts as possible from the WhatsApp desktop/web client
Language:Python17 2 02
guillaC/SQLiteDiskExplorer
SQLiteDiskExplorer enables you to explore, catalog, and batch extract SQLite files from disks and removable media.
Language:C#16 1 20
kacos2000/OtherStuff
Various Topics
Language:PowerShell15 2 05
jnbdz/forensic-imaging-quickstarts
Forensic Imaging quickstarts!
14 3 04
PoCInnovation/Pool2020
💼 Pools organized for Epitech's students in 2020.
Language:C13 5 00
txuswashere/Digital-Forensics
Digital Forensics Essentials (DFE)
13 2 01
arhaxor21/Flagy
This a Complete tool contained box for Capture The Flag competition. Mostly I have inserted all the necessary tools. Some of the people have some trouble installing tools for the beginning stages.
Language:Shell12 1 03
tt-viic/AntiForensics
This script allows us to perform an execution in the memory of the device without leaving traces for forensic analysts after its execution.
Language:PowerShell12 1 01
enderphan94/andump
For Android Data Forensic
Language:Shell9 2 02
hanasuru/TrashParse
Simply tool for analyzing Windows Recycle.Bin files
Language:Python9 1 00
masq/pnger
PNG file parser, for forensic/anti-forensic purposes primarily.
Language:Python9 1 02
dfir-iris/iris-evtx-module
Example of IRIS module, handling EVTX files
Language:Python8 1 12
Heisenberk/decode-kcpassword
Script to decode kcpassword for MacOS
Language:Python8 1 00
HellGateCorp/DOCxNGINxFX
Deep File Forensic. Create or manipulate Wordlists out of Text Documents (ex: for BruteForcing). Save it Line by Line as a Binary .BIN File or as a usually Text File. 👁🌪🛠
Language:Java8 2 03
moul/cryptoguess
Automatically detect and parse cryptography keys
Language:Go8 2 31

forensic

dfir-iris/iris-web

sepinf-inc/IPED

mthcht/ThreatHunting-Keywords

A-YATTA/AMDH

kacos2000/Win10

kacos2000/WindowsTimeline

imakashsahu/Third-Eye-Final-Year-Project

Am0rphous/Awesome

kacos2000/Queries

karthik997/Forensic_Toolkit

kh4sh3i/Malware-Analysis

bitranox/fingerprint

mnrkbys/fjta

kacos2000/Prefetch-Browser

CIRCL/forensic-tools

Srinivas11789/urlRecon

kacos2000/Jumplist-Browser

naemazam/logForenix

ForensicRS/forensic-rs

securityjoes/Crowdstrike-Deploy

kawaiipantsu/maltego-darknet-transforms

MrOctopus/pyWhatsUpp

guillaC/SQLiteDiskExplorer

kacos2000/OtherStuff

jnbdz/forensic-imaging-quickstarts

PoCInnovation/Pool2020

txuswashere/Digital-Forensics

arhaxor21/Flagy

tt-viic/AntiForensics

enderphan94/andump

hanasuru/TrashParse

masq/pnger

dfir-iris/iris-evtx-module

Heisenberk/decode-kcpassword

HellGateCorp/DOCxNGINxFX

moul/cryptoguess