hilljack4n6 Goto Github PK

autopsy

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera's memory card.

awesome-forensics

A curated list of awesome forensic analysis tools and resources

awesome-kape

A curated list of KAPE-related resources

awesome-osint

:scream: A curated list of amazingly awesome OSINT

axiom-powershell

PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.

cyberpipe

An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.

forensic-artifact-automation

A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing open-source tools, such as Kape (Kroll Artifact Parser and Extractor), to forensically acquire and process necessary artifact used in compromise assessments. Additional scripts provide pre-processing automation ca

hacking-resources

Hacking resources and cheat sheets. References, tools, scripts, tutorials, and other resources that help offensive and defensive security professionals.

hindsight

Web browser forensics for Google Chrome/Chromium

ileapp

iOS Logs, Events, And Plist Parser

incident-response-plan-template

A concise, directive, specific, flexible, and free incident response plan template

itunes-backup-explorer

A graphical tool that can extract and replace files from encrypted and non-encrypted iOS backups

live-forensicator

Powershell Script to aid Incidence Response and Live Forensics | Bash Script for MacOS Live Forensics and Incidence Response

mac_apt

macOS (& ios) Artifact Parsing Tool

mal-hash

This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.

my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

o365auditparser

Microsoft Office365 Protection Center Audit Log Parser

onedriveexplorer

powerforensics

PowerForensics provides an all in one platform for live disk forensic analysis

prowler

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.

pshero

PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.

sansfor509

Public script from SANS FOR509 Enterprise Cloud Incident Response

sleuthkit

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.

spectr3

Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.

stark4n6

timesketch

Collaborative forensic timeline analysis

win-for

Windows Forensics Environment Builder