computer-forensics | Topic | Ecosyste.ms: Repos

Topic: "computer-forensics"

cugu/awesome-forensics

⭐️ A curated list of awesome forensic analysis tools and resources

Size: 257 KB - Last synced at: 3 days ago - Pushed at: 26 days ago - Stars: 4,297 - Forks: 656

Srinivas11789/PcapXray

:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

Language: Python - Size: 113 MB - Last synced at: about 1 month ago - Pushed at: about 3 years ago - Stars: 1,716 - Forks: 281

UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It automates the collection of artifacts from a wide range of Unix-like systems, including AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris.

Language: Shell - Size: 59.7 MB - Last synced at: 2 days ago - Pushed at: 22 days ago - Stars: 966 - Forks: 147

xiosec/Computer-forensics

The best tools and resources for forensic analysis.

Size: 1.3 MB - Last synced at: about 2 months ago - Pushed at: about 2 years ago - Stars: 145 - Forks: 46

CIRCL/factual-rules-generator

Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.

Language: Python - Size: 3.2 MB - Last synced at: about 19 hours ago - Pushed at: over 3 years ago - Stars: 76 - Forks: 6

op7ic/unix_collector

unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.

Language: Shell - Size: 85.9 KB - Last synced at: 6 days ago - Pushed at: 5 months ago - Stars: 35 - Forks: 5

CyberSecurityUP/Anti-Forensic-Techniques

Size: 2.93 KB - Last synced at: 3 months ago - Pushed at: 5 months ago - Stars: 34 - Forks: 7

tthtlc/awesome_malware_techniques

This will compile a list of Android, iOS, Linux malware techniques for attacking and detection purposes.

Size: 42 KB - Last synced at: 4 days ago - Pushed at: over 2 years ago - Stars: 26 - Forks: 5

mbrown1413/SqliteFind

A Volatility plugin for finding sqlite database rows

Language: Python - Size: 76.2 KB - Last synced at: 12 months ago - Pushed at: almost 6 years ago - Stars: 22 - Forks: 4

jz543fm/kali-dockerized

Kali Linux in Docker + Ubuntu 22.04 in Docker for Bug Bounty, Penetration Testing, Security Research, Computer Forensics and Reverse Engineering. Kali Linux inside with Docker with or without support with systemd, repository also contains Proof of Concept with kind (Kubernetes in Docker) to test Kali Linux with enabled systemd in K8s cluster

Language: Dockerfile - Size: 88.9 KB - Last synced at: 25 days ago - Pushed at: 8 months ago - Stars: 21 - Forks: 6

ivan-sincek/domain-extractor 📦

Extract valid or partially valid domain names and IPs from malicious or invalid URLs.

Language: Python - Size: 4.88 KB - Last synced at: 3 months ago - Pushed at: almost 2 years ago - Stars: 8 - Forks: 3

ggulgun/Forensic-Docker

Docker images of open source forensic tools

Language: Shell - Size: 2.93 KB - Last synced at: about 2 years ago - Pushed at: over 4 years ago - Stars: 8 - Forks: 0

sydp/goewf

Access Expert Witness Format (ewf/E01/L01) files using Golang

Language: Go - Size: 8.79 KB - Last synced at: about 1 month ago - Pushed at: about 6 years ago - Stars: 8 - Forks: 0

thomaslaurenson/LiveDiff

LiveDiff is a portable system-level differencing tool for Microsoft Windows-based operating systems

Language: C# - Size: 37.1 MB - Last synced at: almost 2 years ago - Pushed at: over 6 years ago - Stars: 8 - Forks: 4

bolisettynihith/ActivitiesCacheParser

A python-based tool to extract forensic info from ActivitiesCache.db (Windows Activity Timeline)

Language: Python - Size: 172 KB - Last synced at: about 2 years ago - Pushed at: about 2 years ago - Stars: 4 - Forks: 1

ivan-sincek/memory-dumper 📦

Dump a process memory and extract data based on regular expressions.

Language: C++ - Size: 288 KB - Last synced at: 3 months ago - Pushed at: about 2 years ago - Stars: 4 - Forks: 3

0xmmalik/CTF-Suite

CTF Suite is a collection of tools you can use during Capture The Flag competitions. These tools are aimed at specific categories of problems and are specific to Jeopardy-style CTFs.

Language: Python - Size: 980 KB - Last synced at: about 1 year ago - Pushed at: about 4 years ago - Stars: 4 - Forks: 0

jz543fm/docker-parrot

Parrot OS (Core/Security) or just Parrot Tools in Docker with the usage of Makefile, Dockerfiles and docker-compose.yaml for Bug Bounty, Penetration Testing, Security Research, Computer Forensics and Reverse Engineering, repository also contains Proof of Concept with kind (K8s in Docker) for ParrotOS with/without systemd in K8s cluster

Language: Makefile - Size: 31.3 KB - Last synced at: 3 months ago - Pushed at: about 1 year ago - Stars: 3 - Forks: 1

Caume/CIAT

Crypto implementations analysis toolkit

Language: C - Size: 2.12 MB - Last synced at: about 1 year ago - Pushed at: over 6 years ago - Stars: 3 - Forks: 0

thomaslaurenson/CellXML-Registry 📦

CellXML-Registry.exe is a portable Windows tool that parses an offline Windows Registry hive file and converts it to the RegXML format. CellXML-Registry leverages the Registry parser project by Eric Zimmerman to aid in parsing the Registry structure.

Language: C# - Size: 33.6 MB - Last synced at: almost 2 years ago - Pushed at: almost 7 years ago - Stars: 3 - Forks: 2

Cathe0n/Cyber-Investigator-guide

This guide aims to assist investigators focused on cybercrime by providing guidance on incident handling, response, and thorough, methodical evidence processing. It is intended as a supplementary resource to support investigators and serve as a reminder, rather than as a standalone procedure. Toolkits will be available!!!

Size: 141 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 2 - Forks: 1