There are no reviews yet. Be the first to send feedback to the community and the maintainers!
Fennec
Artifact collection tool for *nix systemsRhaegal
Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect suspicious/malicious logsSDSParser-rs
NTFS Security Descriptor Stream ($Secure:$SDS) parserCryptnetURLCacheParser
CryptnetURLCacheParser is a tool to parse CryptAPI cache fileslnk_parser
lnk_parser is a full rust implementation to parse windows LNK filesosqueryIR
osqueryIR is an artifact collection tool for Linux systems.winparsingtools
collection of structs and utilities for parsing windows binary formats.osquery-rs
This crate allows you to execute osquery SQL queries using osquery Thrift APICryptnetURLCacheParser-rs
A rust parser for CryptnetURLCache metadata files.SDSParser-py
NTFS Security Descriptor Stream ($Secure:$SDS) parser, Python bindings for https://github.com/AbdulRhmanAlfaifi/SDSParser-rsRecycleBinParser-rs
Parser for Recycle Bin $I filesGetDocsWithMacros
A python script that takes a path as input then go recursively looking for office file that contains macros.EventLogMonitor
EventLogMonitor hooks into Window Event Logs and display the new event as they written to the log.CommentRetriever
A python script to extract comment from any webpage.Love Open Source and this site? Check out how you can help us