Skip to content
@fox-it

Fox-IT

Part of NCC Group

Popular repositories Loading

  1. dissect dissect Public

    Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (pa…

    921 64

  2. aclpwn.py aclpwn.py Public

    Active Directory ACL exploitation with BloodHound

    Python 701 107

  3. Invoke-ACLPwn Invoke-ACLPwn Public

    PowerShell 511 87

  4. log4j-finder log4j-finder Public

    Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)

    Python 435 97

  5. cve-2019-1040-scanner cve-2019-1040-scanner Public

    Python 286 55

  6. dissect.cstruct_legacy dissect.cstruct_legacy Public

    A no-nonsense c-like structure parsing library for Python

    Python 240 25

Repositories

Showing 10 of 84 repositories
  • dissect.target Public

    The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access to various data sources inside disk images or file collections (a.k.a. targets).

    fox-it/dissect.target’s past year of commit activity
    Python 44 AGPL-3.0 47 113 (16 issues need help) 27 Updated Nov 8, 2024
  • flow.record Public

    Recordization library

    fox-it/flow.record’s past year of commit activity
    Python 7 AGPL-3.0 9 5 4 Updated Nov 8, 2024
  • dissect-docs Public

    Dissect documentation project

    fox-it/dissect-docs’s past year of commit activity
    7 AGPL-3.0 7 0 3 Updated Nov 7, 2024
  • dissect.hypervisor Public

    A Dissect module implementing parsers for various hypervisor disk, backup and configuration files.

    fox-it/dissect.hypervisor’s past year of commit activity
    Python 5 AGPL-3.0 5 0 1 Updated Nov 7, 2024
  • dissect.archive Public

    A Dissect module implementing parsers for various archive and backup formats.

    fox-it/dissect.archive’s past year of commit activity
    Python 0 AGPL-3.0 1 1 0 Updated Nov 7, 2024
  • acquire Public

    acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.

    fox-it/acquire’s past year of commit activity
    Python 91 AGPL-3.0 26 28 (5 issues need help) 4 Updated Nov 5, 2024
  • dissect.volume Public

    A Dissect module implementing a parser for different disk volume and partition systems, for example LVM2, GPT and MBR.

    fox-it/dissect.volume’s past year of commit activity
    Python 3 AGPL-3.0 1 0 1 Updated Nov 5, 2024
  • dissect.fat Public

    A Dissect module implementing parsers for the FAT and exFAT file systems, commonly used on flash memory based storage devices and UEFI partitions.

    fox-it/dissect.fat’s past year of commit activity
    Python 2 AGPL-3.0 2 1 0 Updated Nov 4, 2024
  • dissect.util Public

    A Dissect module implementing various utility functions for the other Dissect modules.

    fox-it/dissect.util’s past year of commit activity
    Python 3 Apache-2.0 5 3 4 Updated Nov 4, 2024
  • dissect.xfs Public

    A Dissect module implementing a parser for the XFS file system, commonly used by RedHat Linux distributions.

    fox-it/dissect.xfs’s past year of commit activity
    Python 2 AGPL-3.0 4 2 0 Updated Nov 1, 2024