Python module for forensic analysis of Windows shortcuts (LNK files). You can install this package using pip install lnkanalyser
-
Updated
Mar 28, 2024 - Python
#
windows-forensics
Here are 11 public repositories matching this topic...
When conducting an investigation on a Windows machine there are 8 phase to go through, today we’ll discuss the first ‘Collecting Volatile Information’, and the rest will be explained in future topics
windows
forensics
cybersecurity
cyber-security
investigation
windows-forensics
forensics-tools
sans500
cyberred
-
Updated
Sep 24, 2023
This journal documents my progress and learnings from different TryHackMe rooms. Each entry contains key takeaways, commonly used commands, and practical applications. My experience with TryHackMe has enhanced my understanding of Linux and Windows fundamentals, network protocols, incident handling, and log analysis.
windows
linux
log-analysis
splunk
logs
wireshark
log-analyzer
incident-handling
windows-forensics
linux-fundamentals
windows-fundamentals
-
Updated
Aug 2, 2024
Handbook of windows forensic artifacts across multiple Windows version with interpretation tips with some examples. Work in progress!
-
Updated
Feb 16, 2024
Digital forensics and incident response
dfir
writeups
thehive
volatility
redline
autopsy
kape
velociraptor
windows-forensics
linux-forensics
-
Updated
Jul 27, 2024 - CSS
Gives you the list of storage devices that has been connected to your windows machine
python
security
usb
windows-10
python3
forensics
usb-devices
digital-forensics
windows-forensics
usb-forensics
-
Updated
Oct 19, 2021 - Python
Command Spy is a utility for monitoring the command line arguments of new processes on Windows. Made for CCDC.
-
Updated
Jul 30, 2023 - C#
Hands-on projects for beginners to learn and practice Windows forensics and essential cybersecurity skills
-
Updated
Jun 29, 2024
Tools and Techniques for Digital Forensics and Incident Response
incident-response
dfir
digital-forensics
digital-forensics-incident-response
windows-forensics
linux-forensics
-
Updated
Feb 14, 2024
ExeSpy is a cross-platform PE viewer for EXE and DLL files
-
Updated
Jul 7, 2024 - Python
Cross-platform registry browser for raw Windows registry files
-
Updated
Apr 15, 2023 - Python
Improve this page
Add a description, image, and links to the windows-forensics topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the windows-forensics topic, visit your repo's landing page and select "manage topics."