Skip to content
@fox-it

Fox-IT

Part of NCC Group

Popular repositories Loading

  1. dissect dissect Public

    Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (pa…

    1.1k 80

  2. aclpwn.py aclpwn.py Public

    Active Directory ACL exploitation with BloodHound

    Python 750 107

  3. Invoke-ACLPwn Invoke-ACLPwn Public

    PowerShell 525 90

  4. log4j-finder log4j-finder Public

    Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)

    Python 438 97

  5. cve-2019-1040-scanner cve-2019-1040-scanner Public

    Python 298 59

  6. dissect.cstruct_legacy dissect.cstruct_legacy Public

    A no-nonsense c-like structure parsing library for Python

    Python 240 25

Repositories

Showing 10 of 91 repositories
  • dissect.target Public

    The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access to various data sources inside disk images or file collections (a.k.a. targets).

    fox-it/dissect.target’s past year of commit activity
    Python 77 AGPL-3.0 74 192 (1 issue needs help) 42 Updated Dec 19, 2025
  • dissect.database Public

    A Dissect module implementing parsers for various database formats

    fox-it/dissect.database’s past year of commit activity
    Python 2 Apache-2.0 4 2 4 Updated Dec 19, 2025
  • dissect.fat Public

    A Dissect module implementing parsers for the FAT and exFAT file systems, commonly used on flash memory based storage devices and UEFI partitions.

    fox-it/dissect.fat’s past year of commit activity
    Python 3 AGPL-3.0 4 2 (1 issue needs help) 1 Updated Dec 19, 2025
  • dissect.util Public

    A Dissect module implementing various utility functions for the other Dissect modules.

    fox-it/dissect.util’s past year of commit activity
    Python 4 Apache-2.0 7 11 5 Updated Dec 17, 2025
  • acquire Public

    acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.

    fox-it/acquire’s past year of commit activity
    Python 112 AGPL-3.0 38 28 (3 issues need help) 9 Updated Dec 17, 2025
  • dissect-docs Public

    Dissect documentation project

    fox-it/dissect-docs’s past year of commit activity
    8 AGPL-3.0 8 8 (1 issue needs help) 5 Updated Dec 15, 2025
  • dissect-workflow-templates Public

    Workflow templates for the dissect projects

    fox-it/dissect-workflow-templates’s past year of commit activity
    2 3 0 0 Updated Dec 15, 2025
  • flow.record Public

    Recordization library

    fox-it/flow.record’s past year of commit activity
    Python 10 AGPL-3.0 13 8 4 Updated Dec 12, 2025
  • dissect.evidence Public

    A Dissect module implementing a parsers for various forensic evidence file containers, currently: AD1, ASDF and EWF.

    fox-it/dissect.evidence’s past year of commit activity
    Python 10 AGPL-3.0 3 5 2 Updated Dec 8, 2025
  • dissect.btrfs Public

    A Dissect module implementing a parser for the btrfs file system.

    fox-it/dissect.btrfs’s past year of commit activity
    Python 1 AGPL-3.0 3 2 0 Updated Dec 4, 2025
View all repositories