scrying
A tool for collecting and analyzing screenshots from remote desktop protocols, web applications, and VNC connections.
Packet CAPture Forensic Evidence eXtractor (pcapfex) is a tool developed by Viktor Winkelmann as part of a bachelor thesis, designed to find and extract files from packet capture files. The tool's ease of use allows users to provide a pcap-file and receive a structured export of all files found in it, even if non-standard protocols were used. pcapfex offers a plugin-system for Python developers to easily add more file-types, encodings, or complex protocols. It is developed and tested for Linux environments, depends on Python 2.7 and the dpkt package, and optionally benefits from the regex package for better performance in multithreaded search for file objects.
A tool for collecting and analyzing screenshots from remote desktop protocols, web applications, and VNC connections.
Easy-to-use live forensics toolbox for Linux endpoints with various capabilities such as process inspection, memory analysis, and YARA scanning.
An anti-forensic kill-switch tool for USB ports to shut down the computer immediately in case of unauthorized access.
GVfs is a userspace virtual filesystem implementation for GIO with various backends and features.
Comprehensive suite for advanced file analysis and software supply chain security.
Highlighter is a FireEye Market app that integrates with FireEye products to provide enhanced cybersecurity capabilities.