Skip to content

/BansheePelican

A Forensic C# console app that parses BITS metadata
C#
  1. C# 100.0%
Branch: master
Find file
Clone or download

Clone with HTTPS

Use Git or checkout with SVN using the web URL.

Download ZIP

Launching GitHub Desktop

If nothing happens, download GitHub Desktop and try again.

Launching GitHub Desktop

If nothing happens, download GitHub Desktop and try again.

Launching Xcode

If nothing happens, download Xcode and try again.

Launching Visual Studio

If nothing happens, download the GitHub extension for Visual Studio and try again.

Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
Properties
App.config
BansheePelican.csproj
Program.cs
README.md

README.md

BansheePelican

A Forensic C# console app that parses BITS metadata and displays the results via CLI. Just set the full Windows path to whatever BITS log you'd wish to investigate with the -p switch. These can be files that were copied, or files located in the default C:\ProgramData\Microsoft\Network\Downloader\ directory.

The goal was to make a lightweight app that would produce simple output in a easy to ready format. Although, due to all the unique characters in BITS dat files, some strings may be slightly mangled.

Outputs:

  • All HTTP and HTTPS Strings
  • Unique HTTP and HTTPS Strings
  • Downloaded files from BITS jobs - excluding default BITS tmp files.
  • Also works with edb or similarly formatted logs

alt text

You can’t perform that action at this time.