A 'raw' file copy tool for Windows systems -- bypassing the file mutex
-
Updated
Nov 3, 2022 - C++
A 'raw' file copy tool for Windows systems -- bypassing the file mutex
Repository for documenting work done during Mentor-Mentee session in DevC The idea is to increase practical functional knowledge about different tools & techniques involved in security & forensics.
Convert Android Backup to GZ format.
A tool for creating hashes of files in a directory and comparing them to lists of known good or bad hashes.
IOC Checker, client for Windows OS.
Stand Alone Version of the Registry Viewer found in Wombat Forensics
Windows tool for low-level access to any floppy disks, and comfortable high-level access to some legacy filesystems (ZX Spectrum, MS-DOS, etc.).
PNG file carving related material
Traversal and manipulation of an EXT2 Filesystem contained in VirtualBox VDI File, without mounting in VM
This program detects if any security software (AV, EDR, XDR, firewall, etc.) is running on the system. The program searches the list of running processes and compares their names with a predefined list of known security software processes.
A program and toolset to analyze iDevice USB sessions
A FUSE module to mount captured network data
An Incident Response tool to extract console command history and screen output buffer
Add a description, image, and links to the forensics topic page so that developers can more easily learn about it.
To associate your repository with the forensics topic, visit your repo's landing page and select "manage topics."