Skip to content
@fox-it

Fox-IT

Part of NCC Group

Popular repositories Loading

  1. dissect dissect Public

    Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (pa…

    946 69

  2. aclpwn.py aclpwn.py Public

    Active Directory ACL exploitation with BloodHound

    Python 708 108

  3. Invoke-ACLPwn Invoke-ACLPwn Public

    PowerShell 514 87

  4. log4j-finder log4j-finder Public

    Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)

    Python 435 95

  5. cve-2019-1040-scanner cve-2019-1040-scanner Public

    Python 291 56

  6. dissect.cstruct_legacy dissect.cstruct_legacy Public

    A no-nonsense c-like structure parsing library for Python

    Python 238 26

Repositories

Showing 10 of 85 repositories
  • dissect.target Public

    The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access to various data sources inside disk images or file collections (a.k.a. targets).

    fox-it/dissect.target’s past year of commit activity
    Python 50 AGPL-3.0 53 114 (17 issues need help) 27 Updated Jan 21, 2025
  • dissect.fve Public

    A Dissect module implementing a parsers for full volume encryption implementations, currently Microsoft's Bitlocker Disk Encryption (BDE) and Linux Unified Key Setup (LUKS1 and LUKS2).

    fox-it/dissect.fve’s past year of commit activity
    Python 3 AGPL-3.0 2 1 1 Updated Jan 21, 2025
  • dissect.evidence Public

    A Dissect module implementing a parsers for various forensic evidence file containers, currently: AD1, ASDF and EWF.

    fox-it/dissect.evidence’s past year of commit activity
    Python 7 AGPL-3.0 3 3 0 Updated Jan 21, 2025
  • dissect.ffs Public

    A Dissect module implementing a parser for the FFS file system, commonly used by BSD operating systems.

    fox-it/dissect.ffs’s past year of commit activity
    Python 2 AGPL-3.0 2 0 0 Updated Jan 21, 2025
  • dissect.etl Public

    A Dissect module implementing a parser for Event Trace Log (ETL) files, used by the Windows operating system to log kernel events.

    fox-it/dissect.etl’s past year of commit activity
    Python 2 AGPL-3.0 2 3 0 Updated Jan 21, 2025
  • dissect.executable Public

    A Dissect module implementing parsers for various executable formats such as PE, ELF and Macho-O.

    fox-it/dissect.executable’s past year of commit activity
    Python 0 AGPL-3.0 4 5 3 Updated Jan 21, 2025
  • dissect.extfs Public

    A Dissect module implementing a parser for the ExtFS file system, the native filesystem for Linux operating systems.

    fox-it/dissect.extfs’s past year of commit activity
    Python 1 AGPL-3.0 2 0 0 Updated Jan 21, 2025
  • dissect.fat Public

    A Dissect module implementing parsers for the FAT and exFAT file systems, commonly used on flash memory based storage devices and UEFI partitions.

    fox-it/dissect.fat’s past year of commit activity
    Python 2 AGPL-3.0 4 1 0 Updated Jan 21, 2025
  • acquire Public

    acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.

    fox-it/acquire’s past year of commit activity
    Python 93 AGPL-3.0 28 30 (7 issues need help) 3 Updated Jan 21, 2025
  • dissect.util Public

    A Dissect module implementing various utility functions for the other Dissect modules.

    fox-it/dissect.util’s past year of commit activity
    Python 3 Apache-2.0 7 6 7 Updated Jan 20, 2025
View all repositories

Top languages

Loading…