0xNisarg's repositories
RegistryForensicsCheatSheet
Initial version of personal cheatsheet for windows registry forensics
JwtHmacSecret
A python script to brute force JWT HMAC secrets by utilizing a wordlist.
GetShellCodeBin
A python script to extract obfuscated shell code binaries.
PrefetchDecompressionEnMasse
Built upon @dfirfpi's w10pfdecomp.py, a prefetch decompressor for KAPE Module.
DFIRArtifactMuseum
The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifact validation processes as well as increase access to artifacts that may no longer be readily available anymore.
TheHitchhikersGuidetoDFIRExperiencesFromBeginnersandExperts
The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportunity to write a chapter of a book to get their name out there, get a publication on their resume with an actual ISBN number, and ideally lower the bar for people to contribute something back to the DFIR Community. Want to write a chapter? Let me know and let's make it happen!
gitattributes
A collection of useful .gitattributes templates
KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
libscca
Library and tools to access the Windows Prefetch File (SCCA) format.
MemberProjects
A repo that contains links to projects by members of the Digital Forensics Discord Server! This is meant to help promote projects made by our very own members and to support open source development.
pdfobjflow
Python script to create an object flow of PDF data input from pdf-parser
RegRipper3.0
RegRipper3.0
SigHunter
A C# (.NET 6) tool to compare the file signature of files recursively and inform the user of matches and mismatches
StegoSpace
A python script to output hidden text inside .txt files that use different whitespace chars typically ' ' and '\t'.