Orochi
0 (0)
Orochi is a collaborative forensic memory dump analysis framework.
A script to help create templates for VirtualBox to enhance VM detection evasion, avoiding the need to modify the VirtualBox base directly. It includes a shell script template for the host OS, a dump of the DSDT, and additional features to counter malware fingerprinting techniques.
Orochi is a collaborative forensic memory dump analysis framework.
A cross-platform registry hive editor for forensic analysis with advanced features like hex viewer and reporting engine.
OSXCollector is a forensic evidence collection & analysis toolkit for OSX.
Visually inspect regex matches in binary data/text with YARA and regular expressions, displaying matched bytes and surrounding context.
Tool for live forensics acquisition on Windows systems, collecting artefacts for early compromise detection.
A library and tools to access and analyze APFS file systems
