Velocidex

All

72 repositories

velociraptor
Public
Digging Deeper....
incident-response inventory-management digital-forensics endpoint-protection endpoint-discovery forensics-investigations endpoint-security
Go
•
Other
•555•3.5k•65•6•Updated Sep 18, 2025Sep 18, 2025
velociraptor-docs
Public
Documentation site for Velociraptor
HTML
•
Other
•234•52•7•24•Updated Sep 18, 2025Sep 18, 2025
velociraptor-triage-collector
Public
Construct triage artifact based on rules
Go
•
MIT License
•0•2•0•0•Updated Sep 16, 2025Sep 16, 2025
vfilter
Public
A library implementing a generic SQL like query language.
Go
•
Apache License 2.0
•9•21•0•0•Updated Sep 15, 2025Sep 15, 2025
cloudvelo
Public
An experimental Velociraptor implementation using cloud infrastructure
Go
•
Other
•11•25•1•0•Updated Sep 12, 2025Sep 12, 2025
velociraptor-legacy-build
Public
Build Velociraptor for Windows 7
Go
•
Other
•0•0•0•0•Updated Sep 3, 2025Sep 3, 2025
SQLiteHunter
Public
Hunt for SQLite files used by various applications
Go
•
GNU Affero General Public License v3.0
•14•26•3•0•Updated Sep 3, 2025Sep 3, 2025
go-journalctl
Public
Parser for systemd journal files.
Go
•
Apache License 2.0
•3•14•0•0•Updated Sep 2, 2025Sep 2, 2025
go-yara
Public
Go bindings for YARA
C
•
BSD 3-Clause "New" or "Revised" License
•110•14•0•0•Updated Aug 24, 2025Aug 24, 2025
ordereddict
Public
A simple Ordered Dict implementation.
Go
•
Apache License 2.0
•3•4•0•0•Updated Aug 21, 2025Aug 21, 2025
velociraptor-sigma-rules
Public
A Compiler from Sigma rules to VQL
Go
•5•11•0•1•Updated Aug 19, 2025Aug 19, 2025
go-prefetch
Public
A golang implementation of a prefetch parser.
golang digital-forensics
Go
•
Apache License 2.0
•4•20•1•0•Updated Aug 11, 2025Aug 11, 2025
vtypes
Public
VTypes is a data driven binary parsing system in Go.
Go
•
Apache License 2.0
•4•11•0•0•Updated Aug 2, 2025Aug 2, 2025
pyvelociraptor
Public
PyVelociraptor contains the python bindings for the Velociraptor API.
Python
•
MIT License
•8•20•2•0•Updated Jul 30, 2025Jul 30, 2025
presentations
Public
Presentations and Workshops
HTML
•4•3•0•0•Updated Jul 28, 2025Jul 28, 2025
registry_hunter
Public
Hunt the windows Registry automatically using VQL
Rebol
•
MIT License
•2•9•1•0•Updated Jul 10, 2025Jul 10, 2025
evtx
Public
Golang Parser for Microsoft Event Logs
Go
•
Apache License 2.0
•19•105•2•0•Updated Jun 30, 2025Jun 30, 2025
Linpmem
Public
Linpmem is a linux memory acquisition tool
C
•
GNU General Public License v2.0
•10•88•0•0•Updated Jun 22, 2025Jun 22, 2025
tracee_velociraptor
Public
An EBPF trace framework for Velociraptor based on tracee
C
•
Apache License 2.0
•2•1•0•0•Updated Jun 20, 2025Jun 20, 2025
WinPmem
Public
The multi-platform memory acquisition tool.
C
•
Apache License 2.0
•122•841•25•0•Updated Jun 18, 2025Jun 18, 2025
go-vhdx
Public
A library to parse VHDX files
Go
•
Apache License 2.0
•0•2•0•0•Updated May 11, 2025May 11, 2025
go-ext4
Public
Parser for Ext4 filesystems
Go
•
Apache License 2.0
•0•0•0•0•Updated May 10, 2025May 10, 2025
binparsergen
Public
Binary Parser Generator for Go
Go
•
Apache License 2.0
•4•5•0•0•Updated May 9, 2025May 9, 2025
go-vmdk
Public
A Go library for reading VMDK files
Go
•
Apache License 2.0
•0•2•0•0•Updated May 5, 2025May 5, 2025
amsi
Public
Golang implementation of Microsoft Antimalware Scan Interface
Go
•
MIT License
•4•1•0•0•Updated Apr 18, 2025Apr 18, 2025
go-ntfs
Public
An NTFS file parser in Go
Go
•
Apache License 2.0
•24•70•3•1•Updated Mar 22, 2025Mar 22, 2025
etw
Public
Go
•
MIT License
•0•1•0•0•Updated Mar 14, 2025Mar 14, 2025
oleparse
Public
Golang parser for OLE files
Go
•
MIT License
•4•32•1•1•Updated Mar 12, 2025Mar 12, 2025
go-ese
Public
Go implementation of an Extensible Storage Engine parser
Go
•
Apache License 2.0
•12•30•3•0•Updated Feb 15, 2025Feb 15, 2025
regparser
Public
A Golang Registry parser
Go
•
Apache License 2.0
•10•16•1•0•Updated Feb 3, 2025Feb 3, 2025