Giters
Yogesh Khatri (@swiftforensics) (ydkhatri)

ydkhatri

Geek Repo

233

followers

1

following

19

stars

Company:CyberCX

Location:Sydney, Australia

Home Page:https://www.swiftforensics.com

Twitter:@swiftforensics

Github PK Tool:Github PK Tool

Yogesh Khatri (@swiftforensics)'s repositories

mac_apt

macOS (& ios) Artifact Parsing Tool

Language:PythonLicense:MITStargazers:716Issues:44Issues:71

MacForensics

Scripts to process macOS forensic artifacts

Language:PythonStargazers:165Issues:12Issues:3

OneDrive

OneDrive log .ODL reader

Language:PythonLicense:MITStargazers:97Issues:6Issues:7

spotlight_parser

Read and extract data from macOS spotlight databases

Language:PythonLicense:GPL-3.0Stargazers:94Issues:10Issues:5

UnifiedLogReader

A parser for Unified logging tracev3 files

Language:PythonLicense:MITStargazers:78Issues:13Issues:11

blackboxprotobuf

Blackbox protobuf is a library for decoding and modifying arbitrary protobuf messages without the protobuf type definition.

Language:PythonLicense:MITStargazers:41Issues:2Issues:0

APFS_010

010 template for apfs

License:MITStargazers:22Issues:7Issues:2

nska_deserialize

NSKeyedArchive plist deserializer

Language:PythonLicense:MITStargazers:22Issues:3Issues:1

macOS_FE

Tools for macOS Forensic Bootable media

Language:Objective-CLicense:LGPL-3.0Stargazers:16Issues:4Issues:0

jarp

Just Another broken Registry Parser (JARP)

Language:PythonLicense:MITStargazers:14Issues:2Issues:0

Appx-Analysis

Scripts and tools created for appx analysis talk (Magnet summit 2019)

License:MITStargazers:12Issues:4Issues:1

Presentations

Slides and material from my conference presentations

Stargazers:12Issues:3Issues:0

pyliblzfse

Python bindings for LZFSE

Language:CLicense:MITStargazers:12Issues:3Issues:3

spotlight_queries

Queries for parsed spotlight database in sqlite

License:MITStargazers:11Issues:2Issues:0

Android

Android forensics related scripts

Language:PythonLicense:MITStargazers:5Issues:0Issues:0

Bash_Basics

Stargazers:4Issues:1Issues:0

ALEAPP

Android Logs Events And Protobuf Parser

Language:PythonLicense:MITStargazers:1Issues:0Issues:0

Android-Usagestats-XML-Parser

Android Usagestats XML Parser

Language:PythonStargazers:1Issues:1Issues:0

macosac

Forensic Artifact Collection Tool for macOS

Language:PythonLicense:Apache-2.0Stargazers:1Issues:1Issues:0

pyaff4

The Python implementation of the AFF4 standard.

Language:PythonLicense:Apache-2.0Stargazers:1Issues:0Issues:0

bmc-tools

RDP Bitmap Cache parser

Language:PythonLicense:CECILL-2.1Stargazers:0Issues:1Issues:0

dissect.esedb

A Dissect module implementing a parser for Microsofts Extensible Storage Engine Database (ESEDB), used for example in Active Directory, Exchange and Windows Update.

Language:PythonLicense:Apache-2.0Stargazers:0Issues:1Issues:0

go-ntfs

An NTFS file parser in Go

Language:GoLicense:Apache-2.0Stargazers:0Issues:0Issues:0

iLEAPP

iOS Logs, Events, And Plists Parser

Language:PythonLicense:MITStargazers:0Issues:0Issues:0

KapeFiles

This repository serves as a place for community created Targets and Modules for use with KAPE.

License:MITStargazers:0Issues:1Issues:0

pylzfse

For the latest go to https://github.com/ydkhatri/pyliblzfse. This project is old and unused now.

Language:CLicense:MITStargazers:0Issues:0Issues:0

srum-dump

A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.

Language:PythonLicense:GPL-3.0Stargazers:0Issues:1Issues:0

test_garbage

Stargazers:0Issues:0Issues:0

tex2img

a texture decompression C++-extension for Python

Language:C++License:MITStargazers:0Issues:1Issues:0

velociraptor-docs

Documentation site for Velociraptor

License:NOASSERTIONStargazers:0Issues:0Issues:0