Lists (1)
Stars
Collection of SQL query templates for digital forensics use by platform and application.
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com
Free hands-on digital forensics labs for students and faculty
Never ever ever use pixelation as a redaction technique
Digital Forensics artifact repository
Forensics Wiki, a wiki devoted to information about digital forensics (also known as computer forensics)
DFIQ is a collection of investigative questions and the approaches for answering them
Extract and Visualize Data from URLs using Unfurl
Browser forensics tool for Google Chrome (and other Chromium-based browsers)
Regular Expressions List used in Digital Forensic Tasks
The official repo for a project involving a crowdsourced DFIR book. The main purpose of this book is to give anyone interested an opportunity to write a chapter of a book to get their name out ther…
A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.
A guide to using Azure Data Explorer and KQL for DFIR
A curated list of awesome Memory Forensics for DFIR
Python library to carry out DFIR analysis on the Cloud
Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!
PowerShell module for Office 365 and Azure log collection
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifact validation processes as well as increase access to artifa…