There are 9 repositories under computer-forensics topic.
A curated list of awesome forensic analysis tools and resources
:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
The best tools and resources for forensic analysis.
A Volatility plugin for finding sqlite database rows
This will compile a list of Android, iOS, Linux malware techniques for attacking and detection purposes.
An updated C# port of X-Ways X-Tensions API.
Access Expert Witness Format (ewf/E01/L01) files using Golang
Docker images of open source forensic tools
LiveDiff is a portable system-level differencing tool for Microsoft Windows-based operating systems
CTF Suite is a collection of tools you can use during Capture The Flag competitions. These tools are aimed at specific categories of problems and are specific to Jeopardy-style CTFs.
CellXML-Registry.exe is a portable Windows tool that parses an offline Windows Registry hive file and converts it to the RegXML format. CellXML-Registry leverages the Registry parser project by Eric Zimmerman to aid in parsing the Registry structure.
A python-based tool to extract forensic info from ActivitiesCache.db (Windows Activity Timeline)
Crypto implementations analysis toolkit
Guymager is a free forensic imager for media acquisition. It is based on libewf and libguytools.
This repository contains the forensic tools we made.
The forensic analysis write-up / walkthrough for forensic disk image.
This program searches .bmp for files hidden using LSB subsitution.
The Main Software Repository
Parse information and find/carve Master Boot Records (MBR)
Fork of rdd-copy (https://sourceforge.net/projects/rdd/) developed by NFI (the Netherlands Forensic Institute) and updated to work with new version of libewf.
College lab tasks for Computer Forensics class & Hack The Box intro
Repositório que a apresenta os meus artigos sobre tecnologia - Linux, Cibersegurança, Computação Forense e Gestão de Projectos
Dump a process memory and extract data based on regular expressions.
Useful resources for learning all kinds of useful things subjecting Computer Science, Information Security, Exploitation, Cryptography, Digital Forensics and more
Given a range of dates, is capable of extracting various information from a Windows system in said time range
CFREDS case study for subject code: CTMTCS S2 P2