🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
-
Updated
Jun 4, 2024 - C++
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
TCP/IP packet demultiplexer. Download from:
Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
FAT filesystems explore, extract, repair, and forensic tool
RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
An AFF4 C++ implementation.
Comae Hibernation File Decompressor
Paragon APFS SDK Free
Change CRC checksums of your files.
Hardware arduino based mouse emulator, preventing screen saver locking (eg. during forensic investigation)
Windows tool for low-level access to any floppy disks, and comfortable high-level access to some legacy filesystems (ZX Spectrum, MS-DOS, etc.).
An Incident Response tool to extract console command history and screen output buffer
This program detects if any security software (AV, EDR, XDR, firewall, etc.) is running on the system. The program searches the list of running processes and compares their names with a predefined list of known security software processes.
A FUSE module to mount captured network data
It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving
A program and toolset to analyze iDevice USB sessions
Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"
Add a description, image, and links to the forensics topic page so that developers can more easily learn about it.
To associate your repository with the forensics topic, visit your repo's landing page and select "manage topics."