If you want to use import "github.com/bnagy/crashwalk" in your own Go code, you can get godoc at: http://godoc.org/github.com/bnagy/crashwalk To run the standalone cwtriage tool: - cwtriage runs crashfiles with instrumentation and outputs results in various formats - Usage: cwtriage -root /path/to/afl-dir [-match pattern] -- /path/to/target -in @@ -out whatever ( @@ will be substituted for each crashfile ) - -afl Prefer the AFL recorded crashing command, if present - -engine string Debugging engine to use: [gdb lldb] (default "gdb") - -every int Run every n seconds (default -1) - -f string Template filename to use while running crash - -ignore string Directory skip pattern ( go regex syntax ) - -match string Match pattern for files ( go regex syntax ) - -mem int Memory limit for target processes (MB) (default -1) - -output string Output format to use: [json pb text] (default "text") - -root string Root directory to look for crashes - -seen Include seen results from the DB in the output - -seendb string Path to BoltDB (default "crashwalk.db") - -strict Abort the whole run if any crashes fail to repro - -t int Timeout for target processes (secs) (default 60) - -tidy Move crashes tha
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
A toolkit for forensic analysis of network appliances with YARA decoding options and frame extraction capabilities.
Analyse a forensic target to find and report files found and not found in hashlookup CIRCL public service.
Hindsight is a free tool for analyzing web artifacts from Google Chrome/Chromium browsers and presenting the data in a timeline for forensic analysis.
A script for extracting common Windows artifacts from source images and VSCs with detailed dependencies and usage instructions.
Free software for extracting Microsoft cabinet files, supporting all features and formats of Microsoft cabinet files and Windows CE installation files.
Python script to parse the NTFS USN Change Journal.