(Sometimes partial) Python re-implementations of the technologies involved in reading various data sources in Chrome-esque applications.

Python web app for previewing data in a Chrome Profile Folder

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based on research that has been performed by mounting different sce…

DFIQ is a collection of investigative questions and the approaches for answering them

Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (pa…

Never ever ever use pixelation as a redaction technique

A list of query params used for tracking by various marketing tools

A small util to brute-force prefetch hashes

Google Filestream Forensic Tool

MAL-CL (Malicious Command-Line)

SQLite queries

iOS Logs, Events, And Plist Parser

Free hands-on digital forensics labs for students and faculty

Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists

Blackbox Protobuf is a set of tools for working with encoded Protocol Buffers (protobuf) without the matching protobuf definition.

A modern Python library for writing maintainable web scrapers.

A semantic diff utility and library for tree-like files such as JSON, JSON5, XML, HTML, YAML, and CSV.

⭐ Pretty-print `git` repository collaborators sorted by contributions

A scalable overlay networking tool with a focus on performance, simplicity and security

Animation of the SHA-256 hash function in your terminal.

This repository has the JSON file required to perform user enumeration on various websites.

A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, tedious tasks slowing them down. #nsacyber

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

🕵️ Tool to reverse-engineer Protocol Buffers with unknown definition

A modern Python-3-based alternative to RegRipper

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

Apple Pattern of Life Lazy Output'er