#
Lists (1)
Starred repositories
Collection of Linux and macOS Volatility3 Intermediate Symbol Files (ISF), suitable for memory analysis 🔍
Bjorn is a powerful network scanning and offensive security tool for the Raspberry Pi with a 2.13-inch e-Paper HAT. It discovers network targets, identifies open ports, exposed services, and potent…
A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.
A tool for fetching DFIR and other GitHub tools.
Collection of SQL, Python, and XML scripts to be used in forensic examinations
A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
Digital forensic analysis tool that provides a user-friendly interface for investigating disk images.
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
ELEGANTBOUNCER is a detection tool for file-based mobile exploits.
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
Remote access and Antivirus Logging Database
RedEye is a visual analytic tool supporting Red & Blue Team operations
A curated list of GPT agents for cybersecurity
Parses USB connection artifacts from offline Registry hives
Masto is an OSINT tool written in python to gather intelligence on Mastodon users and instances.
CLI tools for forensic investigation of Windows artifacts
Advanced Python Mastery (course by @dabeaz)
Several python scripts for "dump and go" type mobile forensic reports.
Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!
A command line interface for Amazon EBS snapshots
An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.