-
FAEP Public
Forked from sujayadkesar/FAEPFAEP is an automated tool to extract and parse forensic artifacts from .E01 images automatically, with a clean GUI and minimal manual effort.
Perl GNU General Public License v2.0 UpdatedDec 17, 2025 -
Volume-Shadow-Copy-Explorer Public
Forked from sujayadkesar/vscexplorerVolume Shadow Copy Explorer
Python Apache License 2.0 UpdatedDec 17, 2025 -
RecycleBin-Forensic-Explorer Public
Forked from akhil-dara/RecycleBin-Forensic-ExplorerBrowse Windows Recycle Bin from E01 forensic images with Explorer-style interface. Parse $I/$R artifacts, view deleted files in original folder structure, export with timestamps & hash calculation.…
Python Apache License 2.0 UpdatedDec 16, 2025 -
ArtifactParsers Public
Forked from Digital-Forensics-Discord-Server/ArtifactParsersA repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts
MIT License UpdatedDec 11, 2025 -
GDrive-Forensics Public
Forked from akhil-dara/GDrive-ForensicsDigital forensics for Google Drive—done right. Identify, preserve, and document cloud evidence with hash verification, timeline reconstruction, and defensible reporting for typical DLP cases.
Python Apache License 2.0 UpdatedDec 8, 2025 -
artifactcollector Public
Forked from forensicanalysis/artifactcollector🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
Go MIT License UpdatedSep 7, 2025 -
A novel image encryption algorithm implementing 3D Logistic Map and Improved Chirikov Map for secure and robust image encryption. Features enhanced security through chaotic mapping, high key sensit…
-
Youtube-to-Spotify-Converter Public
Transfer your YouTube liked videos to Spotify! Automatically converts your YouTube music collection to Spotify liked songs or custom playlists with smart song detection and batch processing.
-
parseusbs Public
Forked from khyrenz/parseusbsParses USB connection artifacts from offline Registry hives
-
TRACE-Forensic-Toolkit Public
Forked from Gadzhovski/TRACE-Forensic-ToolkitTRACE is a digital forensic analysis tool that provides a user-friendly interface for investigating disk images.
Python UpdatedAug 29, 2024 -
HIGHT-Python Public
Forked from DenseLance/HIGHT-PythonHIGHT block cipher implementation in Python3 based on original paper by Hong et al. Includes the encryption and decryption functions for HIGHT on ECB mode.
Python MIT License UpdatedJun 19, 2024 -
cloud-forensics-utils Public
Forked from google/cloud-forensics-utilsPython library to carry out DFIR analysis on the Cloud
Python Apache License 2.0 UpdatedJun 17, 2024 -
VirusTotal-Bulk-IP-Scanner Public
This script reads a list of IP addresses from a CSV file, checks each IP address for malicious activity using the VirusTotal API.
-
AbuseIPDB-IP-Scanner Public
This Python script utilizes the AbuseIPDB API to check the malicious activity of IP addresses listed in a CSV file.
-
Splunk4DFIR Public
Forked from mf1d3l/Splunk4DFIRHarness the power of Splunk for your investigations
Shell MIT License UpdatedJun 13, 2024 -
iLEAPP Public
Forked from abrignoni/iLEAPPiOS Logs, Events, And Plist Parser
Python MIT License UpdatedJun 13, 2024 -
-
PersistenceSniper Public
Forked from last-byte/PersistenceSniperPowershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made w…
PowerShell Other UpdatedMay 7, 2024 -
ZCrypt Public
Forked from malladisiddu/ZCryptBasic decryption tool
Python GNU General Public License v3.0 UpdatedApr 7, 2024 -
firefox_decrypt Public
Forked from unode/firefox_decryptFirefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles
Python GNU General Public License v3.0 UpdatedApr 7, 2024 -
Autopsy-Plugins Public
Forked from markmckinnon/Autopsy-PluginsAutopsy Python Plugins
Python UpdatedMar 16, 2024 -
autopsy_addon_modules Public
Forked from sleuthkit/autopsy_addon_modulesRepo to store compiled modules or links to 3rd party add-on modules.
Python UpdatedMar 8, 2024 -
The paper titled "A secure authenticated image encryption scheme based on elliptic curve cryptography" proposes a robust method for securely transmitting images, particularly medical ones, by emplo…
-
Windows-Defender-Quarantine-File-Decryptor Public
Forked from zam89/Windows-Defender-Quarantine-File-DecryptorExtract quarantine files from Windows Defender
Rust MIT License UpdatedDec 12, 2023 -
FileSigExtractor Public
Forked from stuxnet999/FileSigExtractorFileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV file
Python MIT License UpdatedJul 15, 2023 -
lLeapp Public
Forked from markmckinnon/lLeappLinux Logs Events Application Program Parser
JavaScript Apache License 2.0 UpdatedJul 8, 2023 -
-
DFIR-Tools Public
Forked from archanchoudhury/DFIR-ToolsThis is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
Creative Commons Zero v1.0 Universal UpdatedMar 3, 2022 -
Leveldb-py Public
Forked from markmckinnon/Leveldb-pyLeveldb Dumper/Viewer
Python GNU General Public License v3.0 UpdatedOct 24, 2020 -
{{ message }}