Cross Platform (Go app) - to parse Windows Tasks UTF-16 le ecoded xml files to csv or onscreen tab
-
Updated
Dec 6, 2022 - Go
Cross Platform (Go app) - to parse Windows Tasks UTF-16 le ecoded xml files to csv or onscreen tab
An interactive shell for The Sleuth Kit's fls tool.
Quick and dirty method do data exfil binary files in the form of hex strings to GCP's cloud logging easily bypassing most DLP
Access Expert Witness Format (ewf/E01/L01) files using Golang
Provides a multi-platform Graphical User Interface for hashlookup
Mantis is a forensics tool in Go leveraging utilities from Sysinternals and Nirsoft for system analysis and investigation. Automates systems logs retrieval, network connections, process activity analysis, autoruns configurations and more.
Fast Incident Response client library written in Go
A collection of algorithms for comparing the similarity of images using perceptual hashes
Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, Domain, ASN, DNS and Threat Indicator matches.
Forensic Artifacts Collecting Toolset
Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.
urlyzer is a URL parsing analysis tool.
Go script that finds a matching hash or a diff of a target hash in a directory.
Live system forensic collector
Dumps all of the Key/Value pairs from a LevelDB database
Add a description, image, and links to the dfir topic page so that developers can more easily learn about it.
To associate your repository with the dfir topic, visit your repo's landing page and select "manage topics."