Malware Behavior Analyzer
-
Updated
Jun 1, 2017 - C
Malware Behavior Analyzer
Illuminant inconsistencies for image splicing detection in forensics
Foremost is a Linux program to recover files based on their headers and footers. Foremost can work on image files, such as those generated by dd, Safeback, Encase, etc, or directly on a drive. The headers and footers are specified by a configuration file, so you can pick and choose which headers you want to look for.
Non-biallelic SNPs for population genetics and forensics.
dcfldd - enhanced version of dd for forensics and security
Reveal encrypted files stored on a filesystem.
Fileless persistence, attacks and anti-forensic capabilties.
Parse Pcap for Anomalies
A fork of The Sleuthkit with XFS filesystem support. See PR https://github.com/sleuthkit/sleuthkit/pull/1476 for more info.
Undark - a SQLite recovery tool for deleted data or corrupt database
CTF Write-ups
Prácticas de Seguridad en Sistemas Operativos de la especialidad Ingeniería del Software en la UGR.
Trace ScriptBlock execution for powershell v2
This repo hosts basic win32 compatible and visual studio C based shell code for an article on analysis
Extract cram filesystem with lzma compression for debug or forensic
Ultra-fast, minimalist logs parser & analyzer
Add a description, image, and links to the forensics topic page so that developers can more easily learn about it.
To associate your repository with the forensics topic, visit your repo's landing page and select "manage topics."