JamesHabben

evolve

Web interface for the Volatility Memory Forensics Framework

sysmon-queries

Queries to parse sysmon event log file with microsoft logparser

FirefoxCache2

Python scripts for parsing the index file and individual cache files from the cache2 folder of Firefox defaulted on in version 32

4n6-app-finder

Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.

MalwareStuff

EnCaseNetworkFramework

This is a framework written in EnScript to utilize the network capabilities of EnCase. The purpose is to allow for someone to build a quick network enabled EnScript to respond quickly to threats with minimal code being written.

ccm-rua-enscript

EnScript to find and parse CCM_RecentlyUsedApps records

Windows-Prefetch-Parser

Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files

HelpfulPython

Various Python scripts that are helpful for me

MBR-Scan

bstrings

A better strings utility!

ClogFirefoxParser

Use this python script to parse the log file for KeyUp or KeyDown events and print the characters that were typed

RegRipper2.8

RegRipper version 2.8

VLEAPP

Vehicle Logs Events And Properties Parser

ALEAPP

Android Logs Events And Protobuf Parser

community

Volatility plugins developed and maintained by the community

flare-wmi

flightsim

A utility to generate malicious network traffic and evaluate controls

iLEAPP

iOS Logs, Events, And Plist Parser

kaitai_struct_formats

Kaitai Struct: library of binary file formats (.ksy)

oletools

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

PowerForensics

PowerShell - Live disk forensics platform

recteq

Control & Monitor your Recteq Grill

Registry

Full featured, offline Registry parser in C#

RLEAPP

Returns Logs Events And Properties Parser

Uproot

volatility

An advanced memory forensics framework