Ben Smith's Projects
FUSE driver for APFS (Apple File System)
AVML - Acquire Volatile Memory for Linux
An awesome README template to jumpstart your projects!
Python script for outputting PCAPs as JSON as well as extracting attachments within the traffic stream
convert ELF/DWARF symbol and type information into vol3's intermediate JSON
Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
Event Trace Log file parser in pure Python
Convert EVT and EVTX files to JSON for easier SIEM tool ingestion
Collection of acquisition scripts for collecting digital forensic artefacts
Stand-alone parser for User Access Logging from Server 2012 and newer systems
Logging Made Easy
Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in macOS binaries and how they can be used by threat actors for malicious purposes.
:clipboard: Markdown snippets for your documentation files.
Obtain actionable identifiers from MITRE ATT&CK framework based on provided parameters.
A simple collection of free and affordable cyber security resources...
Volatility profiles for Linux and Mac OS X
Pure Python parser for recent Windows Event Log files (.evtx)
RDAP command line client
Template python repository
Python script to redact Personally Identifiable Information from selection of common files.
An advanced memory forensics framework
Windows symbol tables for Volatility 3