Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

esecrpm Follow

Overview Repositories 17 Projects 0 Packages 0 Stars 0

Overview
Repositories
Projects
Packages
Stars

esecrpm

eSecRPM esecrpm

dfir friend

5 followers · 0 following

Achievements

Block or report esecrpm

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Add an optional note:

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.

Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Overview Repositories 17 Projects 0 Packages 0 Stars 0

Overview
Repositories
Projects
Packages
Stars

Type All

Select type

All Sources Forks Archived Can be sponsored Mirrors Templates

Language All

Select language

All C# Rebol Python PowerShell Shell

Sort Last updated

Select order

Last updated Name Stars

evtx Public
Forked from EricZimmerman/evtx

C# based evtx parser with lots of extras

C# MIT License Updated Dec 20, 2024
RECmd Public
Forked from EricZimmerman/RECmd

Command line access to the Registry

Rebol MIT License Updated Mar 29, 2024
KapeFiles Public
Forked from EricZimmerman/KapeFiles

This repository serves as a place for community created Targets and Modules for use with KAPE.

MIT License Updated Mar 29, 2024
INDXRipper Public
Forked from harelsegev/INDXRipper

Carve file metadata from NTFS index ($I30) attributes

Python MIT License Updated Feb 3, 2023
EventLogs-LogonLogoff.tkape Public

KAPE Target for Logon-Logoff Windows events

Updated Jan 19, 2023
dissect-acquire Public

Compiled Windows binary of acquire from Fox-IT dissect project

1 GNU Affero General Public License v3.0 Updated Jan 11, 2023
KAPE-Targets Public

Updated Jul 6, 2022
Get-LateralMovement Public

This script will accept the mounted drive or full path to an evidence source and process relevant forensic artifacts for evidence of lateral movement.

PowerShell Updated Feb 14, 2022
Get-KapeModuleBinaries Public
Forked from mark-hallman/Get-KapeModuleBinaries

Parses KAPE module files and downloads binaries referenced by BinaryURL

PowerShell MIT License Updated Apr 15, 2021
plaso_filters Public
Forked from mark-hallman/plaso_filters

Scripts to facilitate filtering with Plaso

Updated May 20, 2020
KAPE-Binary-Downloads Public

Script to download binary tools for KAPE modules

PowerShell 5 1 Updated Sep 12, 2019
usbdeviceforensics Public
Forked from woanware/usbdeviceforensics

Python script for extracting USB information from Windows registry hives

Python 1 Updated Jun 13, 2019
USBDeviceForensicsEXE Public

USBDeviceForensics Windows executable

1 Updated Jun 12, 2019
SIFT_PostInstall Public

Shell Updated Apr 28, 2019
Install-SIFT Public

Shell Updated Apr 28, 2019
sysmon-config Public
Forked from SwiftOnSecurity/sysmon-config

Sysmon configuration file template with default high-quality event tracing

Updated Jan 12, 2019
WMI_Forensics Public
Forked from davidpany/WMI_Forensics

Python 2 Updated Nov 23, 2018

Footer

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.

eSecRPM esecrpm

Achievements

Achievements

evtx Public

RECmd Public

KapeFiles Public

INDXRipper Public

EventLogs-LogonLogoff.tkape Public

dissect-acquire Public

KAPE-Targets Public

Get-LateralMovement Public

Get-KapeModuleBinaries Public

plaso_filters Public

KAPE-Binary-Downloads Public

usbdeviceforensics Public

USBDeviceForensicsEXE Public

SIFT_PostInstall Public

Install-SIFT Public

sysmon-config Public

WMI_Forensics Public