File parser for multiple types

A powerful tool designed to harvest and collect a wide range of windows system data for forensics.

Forensic Artifacts Collecting Tool Set.

Tabroom.com Legacy Perl/Mason Code

Repository of forensic artifacts which are useful in real world and CTF investigations

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

UNIX-like reverse engineering framework and command-line toolset

Comparative benchmarks of CNN models for detecting gunshot holes in targets, aiming at identifying top-performing architectures in accuracy and efficiency.

Tools for empirical microhaplotype calling, forensic interpretation, and simulation.

TryHackMe Learning from Scratch .. towards CBBH & CDSA

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

SIEM Tactics, Techiques, and Procedures

Interactively find and recover deleted or 👉 overwritten 👈 files from your terminal

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes

Collaborative forensic timeline analysis

CLI tools for forensic investigation of Windows artifacts

Windows tool for low-level access to any floppy disks, and comfortable high-level access to some legacy filesystems (ZX Spectrum, MS-DOS, etc.).

Awesome collection of resources 😎 Work in progress🔥