Phill Moore's Projects
Git for me to put all my forensics stuff
Repository of attack and defensive information for Business Email Compromise investigations
RDP Bitmap Cache parser
This is the development tree. Production downloads are at:
C# based evtx parser with lots of extras
Exfat documentation and scripts
parser for Google search strings
Script for querying Google home devices
Carve file metadata from NTFS index ($I30) attributes
parsers for iOS forensic artefacts
This repository serves as a place for community created Targets and Modules for use with KAPE.
A repo for the scripts and research regarding OS X Forensics
Repo for my research into jumplist tools
Parsing the Recently Played file on the iOS Spotify app
Homepage
Github IO
Repo for my regripper plugins
GUI for regripper
Public script from SANS FOR509 Enterprise Cloud Incident Response
Convert sqlite databases to JSON files
scripts written for HECFBlogs Sunday Funday challenges
The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
Digging Deeper....