Popular repositories Loading

1. usnjrnl-forensic usnjrnl-forensic Public

   The most comprehensive NTFS USN Journal parser: full path reconstruction (CyberCX Rewind), TriForce correlation (MFT + LogFile + UsnJrnl), ghost record recovery, anti-forensics detection, timestomp…

   Rust 30

2. docx-mcp docx-mcp Public

   MCP server for reading and editing Word (.docx) documents with track changes, comments, footnotes, and structural validation

   Python 25 8

3. alaya alaya Public

   A memory engine for conversational AI agents, inspired by neuroscience and Buddhist psychology

   Rust 13 2

4. nameback nameback Public

   Give meaningful names to recovered files (normally only got placeholder names), based on their embedded metadata and/or contents extracted using OCR

   Rust 10

5. ewf ewf Public archive

   ⤳ Moved to SecurityRonin/ewf-forensic — EWF/E01 reader, now the core/ member there. Crate 'ewf' still published.

   Rust 10 3

6. issen issen Public

   Point it at disk + memory evidence; get a correlated, ATT&CK-mapped attack timeline. Rust DFIR orchestrator: one command ingests E01/EWF/VMDK/raw + memory dumps, parses NTFS/registry/EVTX/prefetch/…

   Rust 9 1