https://github.com/fox-it/dissect

Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (part of NCC Group).

dfir dissect python

Last synced: 08 Apr 2025

https://github.com/fox-it/aclpwn.py

Active Directory ACL exploitation with BloodHound

Last synced: 02 Apr 2025

https://github.com/fox-it/invoke-aclpwn

Last synced: 02 Apr 2025

https://github.com/fox-it/Invoke-ACLPwn

Last synced: 13 Mar 2025

https://github.com/fox-it/dissect.cstruct_legacy

A no-nonsense c-like structure parsing library for Python

cstruct parsing python struct

Last synced: 07 May 2025

https://github.com/fox-it/mkYARA

Generating YARA rules based on binary code

Last synced: 15 Mar 2025

https://github.com/fox-it/LDAPFragger

Last synced: 21 Nov 2024

https://github.com/fox-it/bloodhound-import

Python based BloodHound data importer

Last synced: 13 May 2025

https://github.com/fox-it/cobaltstrike-extraneous-space

Historical list of {Cobalt Strike,NanoHTTPD} servers

cobaltstrike iocs nanohttpd teamserver

Last synced: 13 May 2025

https://github.com/fox-it/acquire

acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.

Last synced: 11 May 2025

https://github.com/fox-it/OpenSSH-Session-Key-Recovery

Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.

memory openssh pcap sshd volatility volatility3

Last synced: 30 Mar 2025

https://github.com/fox-it/dissect.cstruct

A Dissect module implementing a parser for C-like structures.

Last synced: 07 May 2025