D-forensik Fast TSV file viewer
Fast TSV file viewer for X-Ways Forensics, the can be "virtual files for investigation purposes" or list exports quickly and clearly displays.
View ArticleCyber Triage
Cyber Triage™ enables cyber first responders to quickly determine if a host is compromised. It’s agentless approach and focus on ease of use and automation allows you to respond without being a...
View ArticleDidier Stevens - decoder-search.py
Does brute-forcing and searching of a file like XORSearch, but it stead of simple operations like XOR, ROL, …, it can handle more complex translations....
View ArticleClik here to view.
NirSoft CredentialsFileView
Utility for Windows that decrypts and displays the passwords and other data stored inside Credentials files of Windows. You can use it to decrypt the Credentials data of your currently running system,...
View ArticleJava IDX Parser
Java IDX files contain high-fidelity indicators about where a piece of malware originated from and how it got onto the infected system. They are an artifact of Java being leveraged to download...
View ArticleNoriben
Noriben is a Python-based script that works in conjunction with Sysinternals Procmon to automatically collect, analyze, and report on runtime indicators of malware. In a nutshell, it allows you to run...
View ArticlePE Carver
A smart(er) executable carver. When targeting unallocated disk space, or even other sets of data, the script will search for not only executable headers but will also parse the header to determine...
View ArticleDavid Pany rr_parseomater
RegRipper wrapper for simplified bulk parsing or registry hives
View Articleribbon
ribbon is a unique ‘data exploration tool’ specifically designed to help you drill down into and explore data within data. Opening a variety of formats in a single integrated environment, ribbon...
View Articleribbon
ribbon is a unique ‘data exploration tool’ specifically designed to help you drill down into and explore data within data. Opening a variety of formats in a single integrated environment, ribbon...
View ArticleThe PineAP Suite (WiFi Pineapple)
PineAP is a highly effective rogue access point suite for the WiFi Pineapple. Building on the simple probe request and response nature of Karma, PineAP takes the attack to the extreme. By utilizing its...
View ArticleClik here to view.
Yahoo - Open_nsfw
Not suitable for work classifier Detecting offensive / adult images is an important problem which researchers have tackled for decades. With the evolution of computer vision and deep learning the...
View ArticleClik here to view.
mimikittenz
mimikittenz is a post-exploitation powershell tool that utilizes the Windows function ReadProcessMemory() in order to extract plain-text passwords from various target processes. mimikittenz can also...
View ArticleViperMonkey
ViperMonkey is a Python project including a VBA macro parser, a VBA emulation engine and a set of tools for malicious macro analysis. I mentioned it several times since early 2015 [SSTIC, MISC], but it...
View ArticleirFARTpull
irFArtpull is a PowerShell script utilized to pull several forensic artifacts from a live Windows 7, 8, Server 2008, and Server 2012 systems on your network. Artifacts it grabs: Disk Information System...
View ArticleNCollector Studio
NCollector Studio is the easy way to download content from the web to your computer. Crawl for specific file types, make any website available for offline browsing or simply download a website to your...
View Articleimagemounter
Command line utility and Python package to ease the (un)mounting of forensic disk images
View Article