RegRippy
RegRippy is a framework for reading and extracting useful forensics data from Windows registry hives, developed in modern Python 3 as an alternative to RegRipper. It utilizes William Ballenthin's python-registry to access the raw registry hives, aiming to provide a framework for developing plugins in an incident response scenario.
FEATURES
ALTERNATIVES
A recognition framework for identifying products, services, operating systems, and hardware by matching fingerprints against network probes.
Windows anti-forensics USB monitoring tool with the ability to shutdown the computer upon detecting the unplugging of a specified USB device.
A collaborative forensic timeline analysis tool for organizing and analyzing data with rich annotations and comments.
Review of various MFT parsers used in digital forensics for analyzing NTFS file systems.
Forensic imaging program with full hash authentication and various acquisition options.
TestDisk is a free data recovery software that can recover lost partitions and undelete files from various file systems.
A tool that uses Plaso to parse forensic artifacts and disk images, creating custom reports for easier analysis.
Visually inspect regex matches in binary data/text with YARA and regular expressions, displaying matched bytes and surrounding context.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.