Search: [forensics]

Sh0ckFR/Infosec-Useful-Stuff https://github.com/Sh0ckFR/Infosec-Useful-Stuff

Mon 21 Oct 2024 11:26:56 AM PDT

This repository is my own list of tools / useful stuff for pentest, defensive activities, programming, lockpicking and physical security (all resources are in English only).

xaitax/TotalRecall https://github.com/xaitax/TotalRecall

Tue 04 Jun 2024 11:37:20 AM PDT

This very simple tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots. To run or use this feature, you need to have one of the new CoPilot+ PCs running on ARM. Windows Recall stores everything locally in an unencrypted SQLite database, and the screenshots are simply saved in a folder on your PC. Here’s where you can find them:

C:\Users\$USER\AppData\Local\CoreAIPlatform.00\UKP{GUID}
.\ImageStore\

Filename: ukg.db

mvt-project/mvt https://github.com/mvt-project/mvt

Wed 21 Jul 2021 05:56:38 PM PDT

Mobile Verification Toolkit (MVT) is a collection of utilities to simplify and automate the process of gathering forensic traces helpful to identify a potential compromise of Android and iOS devices.

It has been developed and released by the Amnesty International Security Lab in July 2021 in the context of the Pegasus project along with a technical forensic methodology and forensic evidences.

Warning: this tool has been released as a forensic tool for a technical audience. Using it requires some technical skills such as understanding basics of forensic analysis and using command line tools.

tcpxtract http://tcpxtract.sourceforge.net/

Tue 20 Mar 2018 03:05:55 AM PDT

tcpxtract is a tool for extracting files from network traffic based on file signatures.

Disk Investigator Info and Download page http://www.theabsolute.net/sware/dskinv.html

Tue 20 Mar 2018 02:06:50 AM PDT

Data forensics software for Windows. Useful for finding lost and hidden data by examining disk sectors directly, not file system extents. Free to download and use. Supports Windows 95 through Windows XP.

Digital (Computer) Forensics Tool Testing Images http://dftt.sourceforge.net/

Tue 20 Mar 2018 02:04:54 AM PDT

An archive of free-to-download and use disk images for practicing your data forensics fu or testing file carving tools.

FotoForensics http://fotoforensics.com/

Tue 20 Mar 2018 12:51:32 AM PDT

A website that does online error level analysis of images (either linked or uploaded) to help determine whether or not they've been edited, and if so which bits were changed. Error level analysis is a technique in which the error level potentials of image files are mapped with algorithms developed and published by Dr. Neil Krawetz. Alterations tend to show up as having higher error potentials than the unmodified parts of the image (which have probably been saved a few times, and thus noise has crept in).

deanmalmgren/textract: extract text from any document. no muss. no fuss. https://github.com/deanmalmgren/textract

Mon 19 Mar 2018 10:34:38 PM PDT

python module for extracting text from different documents. Can also be used as a CLI utility. Can work with text-based formats like CSV, JSON, and HTML. Can work with binary formats like MS Word, MP3, and PDF. The list is fairly extensive.

Links per page

Filters