Projects in Awesome Lists tagged with forensic

https://github.com/dfir-iris/iris-web

Collaborative Incident Response platform

csirt-tooling digital-forensics digital-forensics-incident-response forensic forensic-analysis forensic-tools incident-response python

Last synced: 01 Aug 2024

https://github.com/sepinf-inc/IPED

IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners.

digital-forensics forensic recovery

Last synced: 02 Aug 2024

https://mthcht.github.io/ThreatHunting-Keywords/

Awesome list of keywords and artifacts for Threat Hunting sessions

awesome-list blueteam detection-engineering dfir elk-stack endpoint-security forensic hacktools incident-response iocs offensive-scripts offensive-security redteam siem sigma-rules soc splunk threat-hunting threat-intelligence threathunting

Last synced: 01 Aug 2024

https://github.com/A-YATTA/AMDH

Android Mobile Device Hardening

adb android android-hardening android-malware-detection android-security apk forensic hardening scan-settings security

Last synced: 04 Aug 2024

https://github.com/kacos2000/windowstimeline

Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)

1803 1809 1903 april-2018 artifacts clipboard copy-paste database dfir forensic json1-extension powershell powershell-script powershell-scripts sqlite3 timeline timelines timelineview windows windows-10

Last synced: 27 Sep 2024

https://github.com/kacos2000/WindowsTimeline

Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)

1803 1809 1903 april-2018 artifacts clipboard copy-paste database dfir forensic json1-extension powershell powershell-script powershell-scripts sqlite3 timeline timelines timelineview windows windows-10

Last synced: 02 Aug 2024

https://github.com/kacos2000/Win10

Win 10/11 related research

amcache bam dfir eventlog events forensic jumplist keyword-lists keywords mediaplayer-library notifications objectid sticky-notes timeline wdi win10 win11 windows xml yourphone

Last synced: 01 Aug 2024

https://github.com/bitranox/fingerprint

Monitoring Registry and File Changes in Windows

forensic forensic-analysis forensic-examinations forensics forensics-investigations hacking hacking-code hacking-tool hacking-tools hackingtool hackingtools procmon python3 registry registry-data registry-hacks registry-scripts windows windows-10 windows-7

Last synced: 27 Sep 2024

https://github.com/kacos2000/Prefetch-Browser

Browse Windows Prefetch versions: 17,23,26,30v1/2 & some of SuperFetch .7db/.db's

browser dfir forensic gui powershell prefetch superfetch win10 win11 windows

Last synced: 02 Aug 2024

https://github.com/kacos2000/Jumplist-Browser

Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser

00021401-0000-0000-c000-000000000046 1sps automaticdestinations-ms customdestinations-ms fmid forensic gui gui-application jumplist link lnk mrulist ms-shllink powershell propertylist shell shellbag shelllnk shortcut windows

Last synced: 02 Aug 2024

https://github.com/moul/cryptoguess

Automatically detect and parse cryptography keys

cryptography decode decoder forensic guess hash tool

Last synced: 03 Oct 2024

https://github.com/MrOctopus/pyWhatsUpp

A forensic tool to automatically extract as many artifacts as possible from the WhatsApp desktop/web client

desktop forensic forensics-tools whatsapp

Last synced: 29 Jul 2024

https://github.com/LeKlex/Attack-simulation-infrastructure

A small and simple network infrastructure with automated attacks on a VM server documented by tshark

bruteforce forensic hacking network nmap nmap-scripts port-scanner reverse-shell security shell-script sql-injection telnet tshark ubuntu vagrant virtualbox

Last synced: 04 Aug 2024

https://github.com/prvvv/chromeforensics

Different code samples for Chrome browser analysis & post exploitation

chrome chrome-devtools exploit forensic forensics forensics-tools hacking password post-exploitation

Last synced: 29 Sep 2024