Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

Topic: "forensics"

ANSSI-FR/ADTimeline

Timeline of Active Directory changes with replication metadata

Language: PowerShell - Size: 1020 KB - Last synced at: about 22 hours ago - Pushed at: about 2 months ago - Stars: 499 - Forks: 63

ANSSI-FR/DFIR-O365RC

PowerShell module for Office 365 and Azure log collection

Language: PowerShell - Size: 172 KB - Last synced at: about 22 hours ago - Pushed at: 2 months ago - Stars: 266 - Forks: 31

ANSSI-FR/DFIR4vSphere

Powershell module for VMWare vSphere forensics

Language: PowerShell - Size: 113 KB - Last synced at: about 22 hours ago - Pushed at: 6 months ago - Stars: 150 - Forks: 18

ANSSI-FR/bootcode_parser

A boot record parser that identifies known good signatures for MBR, VBR and IPL.

Language: Python - Size: 1.26 MB - Last synced at: about 22 hours ago - Pushed at: 3 months ago - Stars: 98 - Forks: 23

ANSSI-FR/bits_parser

Extract BITS jobs from QMGR queue and store them as CSV records

Language: Python - Size: 18.6 KB - Last synced at: about 22 hours ago - Pushed at: 3 months ago - Stars: 75 - Forks: 6

ANSSI-FR/DECODE

Malware detection tool for Windows PE files based on DFIR ORC data

Language: Python - Size: 13.4 MB - Last synced at: about 22 hours ago - Pushed at: 9 days ago - Stars: 8 - Forks: 0

Related Topics
windows 4 dfir 3 powershell 3 splunk 2 incident-response 1 malware-detection 1 machine-learning 1 anomaly-detection 1 office365 1 exchangeonline 1 devops 1 azure-active-directory 1 azure 1 vmware-vsphere 1 vmware-esxi 1 vmware 1 timeline 1 active-directory 1 vbr 1 mbr 1 ipl 1 bootkit 1 boot-record 1 bios 1