Skip to content
Change the repository type filter

All

    Repositories list

    • kirby

      Public
      A script to parse several forensic artifacts of given windows (triage) images, using dissect
      Python
      GNU General Public License v3.0
      0200Updated Feb 5, 2026Feb 5, 2026
    • Shell
      GNU General Public License v3.0
      1020Updated Oct 1, 2025Oct 1, 2025
    • nt-hive2

      Public archive
      Windows registry parser library build upon BinRead
      Rust
      GNU General Public License v3.0
      4720Updated Jul 21, 2025Jul 21, 2025
    • dfir-toolkit

      Public archive
      CLI tools for forensic investigation of Windows artifacts
      Rust
      GNU General Public License v3.0
      2935421Updated Jul 21, 2025Jul 21, 2025
    • packer

      Public
      Packer Templates to build vagrant base boxes
      Shell
      0100Updated May 23, 2025May 23, 2025
    • dionysos

      Public
      Scanner for certain IoCs
      Rust
      GNU General Public License v3.0
      21110Updated Jan 29, 2025Jan 29, 2025
    • pr

      Public
      Public relations stuff
      0000Updated Jul 30, 2024Jul 30, 2024
    • Triage-Tools based on dissect
      Python
      0100Updated May 31, 2024May 31, 2024
    • .github

      Public
      DFIR DD team site
      0000Updated May 21, 2024May 21, 2024
    • Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
      Creative Commons Attribution Share Alike 4.0 International
      45200Updated Apr 25, 2024Apr 25, 2024
    • Custom Artifacts for Rapid7 Velociraptor Software
      MIT License
      0200Updated Oct 27, 2023Oct 27, 2023
    • Website
      JavaScript
      0000Updated Oct 4, 2023Oct 4, 2023
    ProTip! When viewing an organization's repositories, you can use the props. filter to filter by custom property.