Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for forensic analysis
forensic-analysis
x
88 search results found
Awesome Forensics
⭐
3,593
A curated list of awesome forensic analysis tools and resources
Openrasp
⭐
2,638
🔥Open source RASP solution
Pcapxray
⭐
1,636
❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
Digital Forensics Guide
⭐
1,232
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
Beagle
⭐
1,171
Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
Osx And Ios Security Awesome
⭐
1,148
OSX and iOS related security tools
Apt Hunter
⭐
1,045
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
Whapa
⭐
1,013
WhatsApp Parser Toolset v1.59
Iris Web
⭐
862
Collaborative Incident Response platform
Forensicstools
⭐
682
A list of free and open forensics analysis tools and other resources
Awesome Anti Forensic
⭐
651
Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything that modify attributes. This all includes tools to work with anything in general that makes changes to a system for the purposes of hiding information.
Avillaforensics
⭐
552
Avilla Forensics 3.0
Wdbgark
⭐
412
WinDBG Anti-RootKit Extension
Awesome Forensics
⭐
382
Awesome Forensics Resources. Almost 300 open source forensics tools, and 600 blog posts about forensics.
Libesedb
⭐
320
Library and tools to access the Extensible Storage Engine (ESE) Database File (EDB) format.
Forensic Tools
⭐
261
A collection of tools for forensic analysis
Forensic Tools
⭐
252
A collection of tools for forensic analysis
Dfir Toolkit
⭐
222
CLI tools for forensic investigation of Windows artifacts
Libtech Auditing Cheatsheet
⭐
194
Pypowershellxray
⭐
184
Python script to decode common encoded PowerShell scripts
Remote Desktop Caching
⭐
155
This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.
Mastiff
⭐
139
Malware static analysis framework
Analisi Digital Forense
⭐
130
Strumenti di Acquisizione e Analisi di copie Forensi
Safetext
⭐
125
Script to remove homoglyphs and zero-width characters to allow for safe distribution of documents from anonymous sources.
Fama
⭐
117
Forensic Analysis for Mobile Apps (FAMA) -- module for the Autopsy Forensic Browser
Awesome Forensicstools
⭐
107
Awesome list of digital forensic tools
Computer Forensics
⭐
107
The best tools and resources for forensic analysis.
Hashlookup Forensic Analyser
⭐
105
Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https://circl.lu/services/hashlookup/
Sysdiagnose
⭐
90
Forensic toolkit for iOS sysdiagnose feature
Forensix
⭐
89
Google Chrome forensic tool to process, analyze and visualize browsing artifacts
Logdissect
⭐
82
CLI utility and Python module for analyzing log files and other data.
Dcfldd
⭐
76
Enhanced version of dd for forensics and security
Judge Jury And Executable
⭐
68
A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
Fingerprint
⭐
56
Monitoring Registry and File Changes in Windows
Lsrootkit
⭐
55
Rootkit Detector for UNIX
Vframe
⭐
52
VFRAME: Visual Forensics and Metadata Extraction
Windows Forensic Artifacts
⭐
51
Handbook of windows forensic artifacts across multiple Windows version with interpretation tips with some examples. Work in progress!
Columbo
⭐
50
Columbo is a computer forensic analysis tool used to simplify and identify specific patterns in compromised datasets.
Forensicsim
⭐
50
A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and reactions from a Microsoft Teams IndexedDB LevelDB database.
Metaforge
⭐
49
An OSINT Metadata analyzing tool that filters through tags and creates reports
Entropy
⭐
47
CLI program to calculate file entropy
Pdfresurrect
⭐
40
Analyze and help extract older "hidden" versions of a pdf from the current pdf.
Btrfscue
⭐
39
Recover files from damaged BTRFS filesystems
Pyaff4
⭐
34
The Python implementation of the AFF4 standard.
Douglas 042
⭐
26
Powershell script to help Speed up Threat hunting incident response processes
Anti Forensics
⭐
25
A collection of anti-forensics scripts
Kaudit
⭐
25
Alcide Kubernetes Audit Log Analyzer - Alcide kAudit
Flowtag
⭐
24
FlowTag visualizes pcap files for forensic analysis
Vminspect
⭐
18
Tools for inspecting VM disk images
Emuhookdetector
⭐
17
hook detector using emulation and comparing static with dynamic outputs
Btrforensics
⭐
15
Forensic Analysis Tool for Btrfs File System.
Unix_collector
⭐
15
A live forensic collection script for UNIX-like systems.
Logfishh
⭐
15
Logs Forensic Investigator SSH
Strspy
⭐
14
STRspy: a novel alignment and quantification-based state-of-the-art method, short tandem repeat (STR) detection calling tool designed specifically for long-read sequencing reads such as from Oxford nanopore technology (ONT) and PacBio.
Webcapsule
⭐
14
Record and Replay Engine for Web Browsers
Dftools
⭐
13
A curated list of digital forensic tools.
Palmprint Recognition In The Wild
⭐
13
Windowseventstocsvtimeline
⭐
12
Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.
Osxchromedecrypt
⭐
12
Decrypt Google Chrome and Chromium Passwords on Mac OS X. No dependencies, quick, fast.
Visualfirewall
⭐
12
VisualFirewall/IDS is a research-grade Firewall and IDS visualization tool that aims to provide a highly-informative interface of network activities that relate to system security. The program is designed with novice system security administrators in mind who need easy to learn representations of security information, but also need the power of forensic analysis on past attacks.
Honeysnap
⭐
12
Docker Cif
⭐
11
CIFv3 Ubuntu 16.04 Docker Container (Bearded Avenger)
Fivemcipherfinder
⭐
11
A Fivem Cipher finder for those that don't want Ciphers in their scripts :D
Cybersecurity Forensics
⭐
10
A collection of forensics tools, software, libraries, learning tutorials, frameworks, academic and practical resources in Cybersecurity
Aws Public Account Ids
⭐
10
Publicly-listed AWS account IDs for easy lookup. Great for cleaning up false positives from unknown Account IDs in Cloudtrail
Timesketch Cli
⭐
10
A dedicated repo to interact with the API of Timesketch
Forensic Imaging Quickstarts
⭐
10
Forensic Imaging quickstarts!
Apple Photos Forensics
⭐
9
Docs repo with my findings on how Apple Photos app works.
Exfatdump
⭐
9
an experimental tool for forensic analysis of ExFAT filesystem
Sqlitediskexplorer
⭐
9
SQLiteDiskExplorer enables you to explore, catalog, and batch extract SQLite files from disks and removable media.
Forensic_accounting
⭐
8
Case Studies on Forensic Accounting using Data Analysis
Python Image Extractor
⭐
8
Extracts JPEG's from Android Thumbdata3 files, and similar
Tshark Cheatsheet
⭐
7
Hunting Fish with tshark. Active/Passive/Realtime/Live Threat Hunting
Invoke Psdump
⭐
7
PowerShell wrapper for WinDump
Nbtempow
⭐
7
NBTempoW V. 2.1 is a forensic tool for making timelines from block devices image files (raw, ewf,physicaldrive, etc.). It uses TSK (The Sleuthkit) and it has been developed with Lazarus V. 1.6.2 ( Delphi compatible cross-platform IDE for Rapid Application Development). It runs only in Windows. If the device image file is splitted, you can select just the first chunk.
Regsmart
⭐
6
Windows Registry Analysis Tool
Remotekapetriage
⭐
6
A powershell tool that automate the remote forensic evidence adquisitions (triage) from Remote windows machines, using KAPE tool.
Wack
⭐
6
ack for wallet.dat's
Securestring
⭐
6
A C++ String-like-class that does not save data as plain-text in memory. It makes live analysis of memory more difficult, as well as forensic analysis, as the content is made sure to be wiped from memory when the instance is deleted.
Malware Tools Docker
⭐
6
Dockerfile with tools for analyzing malicious documents.
Foremost
⭐
6
Foremost is a Linux program to recover files based on their headers and footers. Foremost can work on image files, such as those generated by dd, Safeback, Encase, etc, or directly on a drive. The headers and footers are specified by a configuration file, so you can pick and choose which headers you want to look for.
Linux Kernel Forensics Scripts
⭐
5
Gdb, r2, python scripts i made to perform binary analysis and forensic tasks.
Microhapulator
⭐
5
Tools for empirical microhaplotype calling, forensic interpretation, and simulation.
Filescanner
⭐
5
FileScanner: Analyze file data and identify known file formats and structures
Hscan
⭐
5
Scans recursively a path to match given sha1 checksums.
File_forensics
⭐
5
Looks for files that looks suspicious in terms of forensics and could be worth further investigation.
Pnger
⭐
5
PNG file parser, for forensic/anti-forensic purposes primarily.
Antiforensics
⭐
5
This script allows us to perform an execution in the memory of the device without leaving traces for forensic analysts after its execution.
1-88 of 88 search results
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.