Repositories list

• vmdk-rs

  Public
  Rust

  •

  Apache License 2.0

  •00 forks•00 stars•00 issues•00 pull requests•Updated Mar 30, 2026Mar 30, 2026

• e01-rs

  Public
  Rust

  •

  Apache License 2.0

  •00 forks•00 stars•00 issues•00 pull requests•Updated Mar 30, 2026Mar 30, 2026

• llama

  Public
  llama is lightgrep's amazing media analyzer

  C++

  •

  Apache License 2.0

  •11 fork•1616 stars•00 issues•00 pull requests•Updated Mar 24, 2026Mar 24, 2026

• SSH-Weak-DH

  Public
  Python

  •

  GNU General Public License v2.0

  •3535 forks•104104 stars•00 issues•00 pull requests•Updated Mar 22, 2026Mar 22, 2026

• mbedtls-fuzz

  Public
  C

  •

  GNU General Public License v2.0

  •1919 forks•2626 stars•00 issues•00 pull requests•Updated Jan 18, 2026Jan 18, 2026

• LAVA

  Public
  LAVA parses a variety of log types, generates statistics about provided log files, and alerts on common issues within.

  Rust

  •

  Apache License 2.0

  •11 fork•99 stars•00 issues•00 pull requests•Updated Dec 23, 2025Dec 23, 2025

• DNSForge

  Public
  Python

  •

  Apache License 2.0

  •22 forks•1414 stars•00 issues•00 pull requests•Updated Dec 11, 2025Dec 11, 2025

• Velociraptor_LMDA

  Public
  Lateral Movement and Data Access artifacts for Velociraptor

  Jupyter Notebook

  •

  Apache License 2.0

  •11 fork•1717 stars•00 issues•00 pull requests•Updated Dec 2, 2025Dec 2, 2025

• SharpParty

  Public
  C# implementation of the process injection techniques dubbed "PoolParty"

  C#

  •

  BSD 3-Clause "New" or "Revised" License

  •11 fork•1717 stars•00 issues•00 pull requests•Updated Nov 7, 2025Nov 7, 2025

• greppin-logs

  Public
  2021 SANS DFIR Summit: Greppin' Logs

  Python

  •

  Other

  •22 forks•2020 stars•00 issues•00 pull requests•Updated Oct 30, 2025Oct 30, 2025

• cobaltstrike-config-extractor

  Public
  Cobalt Strike Beacon configuration extractor and parser.

  Python

  •

  Other

  •1313 forks•161161 stars•44 issues•00 pull requests•Updated Oct 30, 2025Oct 30, 2025

• lightgrep

  Public
  Command-line utility for multipattern search using liblightgrep

  C++

  •

  Apache License 2.0

  •1111 forks•6262 stars•22 issues•11 pull request•Updated Oct 30, 2025Oct 30, 2025

• DarkGateTools

  Public
  Programs to decrypt DarkGate Strings in IDA Python and decrypt keylog files.

  Python

  •

  Apache License 2.0

  •00 forks•00 stars•00 issues•00 pull requests•Updated Oct 30, 2025Oct 30, 2025

• ese_parser

  Public
  A Rust-based library for parsing Windows ESE databases

  C++

  •

  Apache License 2.0

  •22 forks•1010 stars•00 issues•22 pull requests•Updated Oct 30, 2025Oct 30, 2025

• hasher

  Public
  A wrapper around openssl and ssdeep for hashing files and matching them

  C++

  •11 fork•11 star•00 issues•00 pull requests•Updated Oct 30, 2025Oct 30, 2025

• notatin

  Public
  A Windows registry file parser written in Rust

  Rust

  •

  Apache License 2.0

  •77 forks•4141 stars•11 issue•00 pull requests•Updated Oct 30, 2025Oct 30, 2025

• sidr

  Public
  Search Index Database Reporter

  windowsforensicsdfir

  windowsforensicsdfir

  Rust

  •

  Other

  •99 forks•135135 stars•22 issues•00 pull requests•Updated Oct 28, 2025Oct 28, 2025

• msgraph-mailfetch

  Public
  A sample Microsoft Graph client application which can read mail from O365

  C#

  •

  Apache License 2.0

  •33 forks•55 stars•00 issues•00 pull requests•Updated Oct 28, 2025Oct 28, 2025

• plistutils

  Public
  Python utilities related to plists

  Python

  •

  BSD 3-Clause "New" or "Revised" License

  •88 forks•5555 stars•22 issues•22 pull requests•Updated Oct 28, 2025Oct 28, 2025

• QELP

  Public
  Quick ESXi Log Parser

  Python

  •

  Apache License 2.0

  •55 forks•3131 stars•00 issues•00 pull requests•Updated Oct 20, 2025Oct 20, 2025

• velociraptor-lateral-movement

  Public archive
  Apache License 2.0

  •33 forks•1212 stars•00 issues•00 pull requests•Updated Aug 27, 2025Aug 27, 2025

• .github

  Public
  00 forks•00 stars•00 issues•00 pull requests•Updated Aug 21, 2025Aug 21, 2025

• jenkins-build-parser

  Public
  Tool for parsing and aggregating information from Jenkins job/build config files

  Python

  •

  Apache License 2.0

  •00 forks•11 star•00 issues•00 pull requests•Updated Dec 12, 2024Dec 12, 2024

• CopyUnlocker-BOF

  Public
  Port of the LockLess tool (https://github.com/GhostPack/Lockless) to BOF format

  C

  •

  Apache License 2.0

  •33 forks•77 stars•00 issues•00 pull requests•Updated Oct 22, 2024Oct 22, 2024

• EDRSilencer-BOF

  Public
  Port of the EDRSilencer tool (https://github.com/netero1010/EDRSilencer) to BOF format

  C

  •

  Apache License 2.0

  •99 forks•3333 stars•00 issues•00 pull requests•Updated Oct 22, 2024Oct 22, 2024

• sleuthkit

  Public
  The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library…

  C

  •683683 forks•00 stars•00 issues•00 pull requests•Updated Aug 23, 2024Aug 23, 2024

• PadBuster

  Public
  Automated script for performing Padding Oracle attacks

  Perl

  •

  Apache License 2.0

  •230230 forks•809809 stars•33 issues•55 pull requests•Updated Jul 13, 2024Jul 13, 2024

• sf-password-research

  Public
  Python

  •

  Apache License 2.0

  •00 forks•1515 stars•00 issues•00 pull requests•Updated May 2, 2024May 2, 2024

• DUALITY

  Public
  C#

  •

  Apache License 2.0

  •55 forks•1818 stars•00 issues•00 pull requests•Updated Feb 29, 2024Feb 29, 2024

• LowDLL

  Public
  C#

  •

  Apache License 2.0

  •11 fork•77 stars•00 issues•00 pull requests•Updated Feb 27, 2024Feb 27, 2024