A powershell tool that automate the remote forensic evidence adquisitions (triage) from Remote windows machines, using KAPE tool.
-
Updated
May 28, 2021 - PowerShell
A powershell tool that automate the remote forensic evidence adquisitions (triage) from Remote windows machines, using KAPE tool.
Entrepreneuriat Étudiant Européen
Criação de novos módulos para a ferramenta forense KAPE.
omniscient currencies tokens
using FTK imager to extract data from disk
This repository serves as a place for community created SQLECmd Maps for use with SQLECmd.
Convert Kape Files to DFIR-ORC configurations
koko (all) ni (me) .co (and others)
DEUTSCH LERNEN · LEARN GERMAN · APRENDER ALEMÁN · APPRENDRE L'ALLEMAND
FRANZÖSISCH LERNEN · LEARN FRENCH · APRENDER FRANCÉS · APPRENDRE LE FRANÇAIS
Archive of presentations shared with the DFIR community.
SPANISCH LERNEN · LEARN SPANISH · APRENDER ESPAÑOL · APPRENDRE L'ESPAGNOL
ENGLISCH LERNEN · LEARN ENGLISH · APRENDER INGLÉS · APPRENDRE L'ANGLAIS
coordinated professionalization of faculties
actions titles coins
A repository of output using KAPE (!EZParser Module) for various publicly available forensic images!
Digital forensics and incident response
Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.
A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. Please add a new issue if you have an idea for something to add.
Add a description, image, and links to the kape topic page so that developers can more easily learn about it.
To associate your repository with the kape topic, visit your repo's landing page and select "manage topics."