Rifiuti2
0 (0)
Tool for analyzing Windows Recycle Bin INFO2 file
Diffy has been deprecated at Netflix. This software is no longer maintained or supported. Diffy is a digital forensics and incident response (DFIR) tool that was developed by Netflix's Security Intelligence and Response Team (SIRT). Diffy allows a forensic investigator to quickly scope a compromise across cloud instances during an incident, and triage those instances for followup actions. Diffy is currently focused on Linux instances running within Amazon Web Services (AWS), but owing to our plugin structure, could support multiple platforms and cloud providers. It's called "Diffy" because it helps a human investigator to identify the differences between instances, and because Alex pointed out that "The Difforensicator" was unnecessarily tricky. See Releases for recent changes. See our Read the Docs site for well-formatted documentation. Supported Technologies: AWS (AWS Systems Manager / SSM), Local osquery. Each technology has its own plugins for targeting, collection, and persistence. Features: Efficiently highlights outliers in security-relevant instance behavior. For example, you can use Diffy to tell you which of your instances are listening on an unexpected port.
Tool for analyzing Windows Recycle Bin INFO2 file
XMLStarlet offers a suite of command line utilities for manipulating and querying XML documents.
A next-generation crawling and spidering framework for extracting data from websites
A digital investigation platform for parsing, searching, and visualizing evidences with advanced analytics capabilities.
Orochi is a collaborative forensic memory dump analysis framework.
GVfs is a userspace virtual filesystem implementation for GIO with various backends and features.