With EmailAnalyzer you can analyze your suspicious emails. You can extract headers, links, and hashes from the .eml file and you can generat…
Easy-to-use IDA plugin for code emulation
Documentation and scripts to properly enable Windows event logs.
CLI program to calculate the entropy of files
Graph Visualization for windows event logs
A fast library for parsing and importing Windows Event Logs into Elasticsearch.
ExeSpy is a cross-platform PE viewer for EXE and DLL files
Platform-independent Perl library and command-line tool for reading, writing, and editing metadata in a wide variety of files including phot…
FAME Automates Malware Evaluation
This repository is automatically added to all FAME installations.
Incident Response - Fast suspicious file finder
FAT filesystems explore, extract, repair, and forensic tool
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
FileTrove indexes files and creates metadata from them.
Monitoring Registry and File Changes in Windows
FIT is a modular suite of Python applications for digital forensic acquisition of online contents such as web pages, emails, social media, a…
FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), generat…
FakeNet-NG - Next Generation Dynamic Network Analysis Tool
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
Free educational content on reverse engineering and malware analysis from the FLARE team
This repository aims to compile all Flare-On challenge binaries and write-ups. Update: 2014 -2024.
A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering enviro…
An open source platform to support analysts to organise their case and tasks
一款专为 CTF 竞赛设计的智能流量分析工具,支持多协议解析与自动化 Flag 提取,助力快速解题。