| dfir-dd/dfir-toolkit |
222 |
|
0 |
0 |
about 2 years ago |
4 |
July 08, 2023 |
3 |
gpl-3.0 |
Rust |
| CLI tools for forensic investigation of Windows artifacts |
| EricZimmerman/LECmd |
205 |
|
0 |
0 |
over 2 years ago |
0 |
|
1 |
mit |
C# |
| Lnk Explorer Command line edition!! |
| EricZimmerman/PECmd |
156 |
|
0 |
0 |
over 2 years ago |
0 |
|
0 |
mit |
C# |
| Prefetch Explorer Command Line |
| EricZimmerman/RECmd |
106 |
|
0 |
0 |
almost 3 years ago |
0 |
|
0 |
mit |
Rebol |
| Command line access to the Registry |
| Recruit-CSIRT/macOSTriageTool |
39 |
|
0 |
0 |
about 6 years ago |
0 |
|
0 |
gpl-3.0 |
Go |
| A DFIR tool to collect artifacts on macOS |
| mdawsonuk/LevelDBDumper |
37 |
|
0 |
0 |
almost 3 years ago |
2 |
March 10, 2021 |
4 |
gpl-3.0 |
Go |
| Dumps all of the Key/Value pairs from a LevelDB database |
| IllusiveNetworks-Labs/GetConsoleHistoryAndOutput |
36 |
|
0 |
0 |
over 8 years ago |
0 |
|
0 |
bsd-3-clause |
C++ |
| An Incident Response tool to extract console command history and screen output buffer |
| erichutchins/geoipsed |
20 |
|
0 |
0 |
about 2 years ago |
0 |
|
0 |
unlicense |
Rust |
| Fast, inline geolocation decoration of IPv4 and IPv6 addresses written in Rust |
| Recruit-CSIRT/MacRipper |
14 |
|
0 |
0 |
about 5 years ago |
0 |
|
0 |
gpl-3.0 |
Python |
| A DFIR tool to analyze artifacts on macOS |
| jaegeral/timesketch-cli |
10 |
|
0 |
0 |
almost 6 years ago |
0 |
|
7 |
apache-2.0 |
Python |
| A dedicated repo to interact with the API of Timesketch |
