kape
There are 30 repositories under kape topic.
EricZimmerman/KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
AndrewRathbun/DFIRMindMaps
A repository of DFIR-related Mind Maps geared towards the visual learners!
jfarley248/iTunes_Backup_Reader
Python 3 Script to parse out iTunes backups
AndrewRathbun/Awesome-KAPE
A curated list of KAPE-related resources
swisscom/Invoke-Forensics
Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
AndrewRathbun/DFIRRegex
A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.
AndrewRathbun/KAPE-EZToolsAncillaryUpdater
A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhance the output of those tools
AndrewRathbun/DFIRPowerShellScripts
Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!
AndrewRathbun/EventTranscript.db-Research
A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.
evild3ad/Get-MiniTimeline
Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
AndrewRathbun/Anti-Forensics-VHDX
A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. Please add a new issue if you have an idea for something to add.
AndrewRathbun/ForensicImageKAPEOutput
A repository of output using KAPE (!EZParser Module) for various publicly available forensic images!
SAP/forensic-artifact-automation
A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing open-source tools, such as Kape (Kroll Artifact Parser and Extractor), to forensically acquire and process necessary artifact used in compromise assessments. Additional scripts provide pre-processing automation capabilities and other supporting functions.
keyboardcrunch/Invoke-Kape
Remote KAPE collection using powershell
Richard1611/RemoteKapeTriage
A powershell tool that automate the remote forensic evidence adquisitions (triage) from Remote windows machines, using KAPE tool.
dwmetz/Presentations
Archive of presentations shared with the DFIR community.
AndrewRathbun/SQLECmd
This repository serves as a place for community created SQLECmd Maps for use with SQLECmd.
ojedavidea/english
ENGLISCH LERNEN · LEARN ENGLISH · APRENDER INGLÉS · APPRENDRE L'ANGLAIS
mthcht/KapeFiles2DFIR-orc-config
Convert Kape Files to DFIR-ORC configurations
ojedavidea/deutsch
DEUTSCH LERNEN · LEARN GERMAN · APRENDER ALEMÁN · APPRENDRE L'ALLEMAND
ojedavidea/espanol
SPANISCH LERNEN · LEARN SPANISH · APRENDER ESPAÑOL · APPRENDRE L'ESPAGNOL
tymyrddin/blue-dfir
Digital forensics and incident response
douglastmartins/Creating-new-modules---Kroll-Artifact-Parser-And-Extractor_KAPE
Criação de novos módulos para a ferramenta forense KAPE.
ElliotMollman/Data_Forensics
using FTK imager to extract data from disk
ojedavidea/akti.co
actions titles coins
ojedavidea/EEE
Entrepreneuriat Étudiant Européen
ojedavidea/exae.co
omniscient currencies tokens
ojedavidea/francais
FRANZÖSISCH LERNEN · LEARN FRENCH · APRENDER FRANCÉS · APPRENDRE LE FRANÇAIS
ojedavidea/kokoni.co
koko (all) ni (me) .co (and others)
ojedavidea/profa.co
coordinated professionalization of faculties