With EmailAnalyzer you can analyze your suspicious emails. You can extract headers, links, and hashes from the .eml file and you can generate reports.

Python 249 36 Updated Oct 17, 2023

cugu / awesome-forensics

⭐️ A curated list of awesome forensic analysis tools and resources

4,180 647 Updated Mar 10, 2025

ashemery / LinuxForensics

Everything related to Linux Forensics

Shell 694 87 Updated Jul 13, 2023

AndrewRathbun / DFIRArtifactMuseum

The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifact validation processes as well as increase access to artifa…

HTML 582 49 Updated Mar 11, 2025

sepinf-inc / IPED

IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation b…

Java 1,041 229 Updated Mar 11, 2025

SpyGuard / SpyGuard

SpyGuard is a forked and enhanced version of TinyCheck. SpyGuard's main objective is to detect signs of compromise by monitoring network flows transmitted by a device.

Python 416 44 Updated Sep 14, 2024

abrignoni / RLEAPP

Returns Logs Events And Properties Parser

Python 101 37 Updated Mar 3, 2025

CrowdStrike / SuperMem

A python script developed to process Windows memory images based on triage type.

Python 259 41 Updated Nov 25, 2023

Beercow / OneDriveExplorer

OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat and <UserCid>.dat.previous file.

Python 192 20 Updated Feb 14, 2025

Dead-Simple-Scripts / AutoLLR

Script to automate Linux live evidence collection

Shell 27 8 Updated Aug 4, 2022

jgasmussen / Hash2Hash_Compare.py

Python 1 Updated Oct 29, 2022

DFIR-HBG / Snapchat_Auto

Automatic extraction and parsing of Snapchat for iOS and Android

Python 39 4 Updated Apr 2, 2024

jgasmussen / Messages_csv2html

Takes Messages stored in .csv file format and converts it to an HTML Message Thread

Python 2 Updated Oct 17, 2022

pythonspaces / awesome-resources

Free Learning Resources

Jupyter Notebook 61 Updated Oct 29, 2022

markmckinnon / cLeapp

Chrome Logs Events and Protobuf Parser

JavaScript 38 5 Updated Dec 13, 2022

jblukach / mmi

OS Triage for Anyone and Everyone

Rust 7 1 Updated Feb 18, 2025

ufrisk / MemProcFS

MemProcFS

C 3,412 427 Updated Mar 1, 2025

upscayl / upscayl

🆙 Upscayl - #1 Free and Open Source AI Image Upscaler for Linux, MacOS and Windows.

TypeScript 35,658 1,638 Updated Mar 10, 2025

WithSecureLabs / chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

Rust 3,065 274 Updated Dec 28, 2024

hasherezade / pe-bear

Portable Executable reversing tool with a friendly GUI

C++ 2,930 180 Updated Mar 8, 2025

tclahr / uac

UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It automates the collection of artifacts from a wide range of U…

Shell 883 136 Updated Mar 7, 2025

jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool

Linux Baseline and Forensic Triage Tool - BETA

Shell 53 6 Updated Sep 8, 2022

alexandreborges / malwoverview

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, Th…

Python 3,110 457 Updated Jan 24, 2025

olafhartong / sysmon-cheatsheet

All sysmon event types and their fields explained

545 73 Updated Nov 13, 2021

randomaccess3 / Awesome-BEC

Repository of attack and defensive information for Business Email Compromise investigations

247 29 Updated Feb 1, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

John G. Asmussen jgasmussen

Achievements