❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.

A Volatility plugin for finding sqlite database rows

Extract valid or partially valid domain names and IPs from malicious or invalid URLs.

A python-based tool to extract forensic info from ActivitiesCache.db (Windows Activity Timeline)

CTF Suite is a collection of tools you can use during Capture The Flag competitions. These tools are aimed at specific categories of problems and are specific to Jeopardy-style CTFs.

This repository contains the forensic tools we made.

bfcpf stands for "Brute Force CPF" and it is a CLI tool that breaks a partial CPF, finding all valid ones within the pattern given by the user.

A Python script to extract and analyse EXIF data

Parse information and find/carve Master Boot Records (MBR)

College lab tasks for Computer Forensics class & Hack The Box intro

Given a range of dates, is capable of extracting various information from a Windows system in said time range