A comprehensive TryHackMe learning path with organized sections on Introductory Rooms, Linux Fundamentals, Networking, Forensics, CTF challenges, Scripting, and more. This repo provides a structured approach to mastering cybersecurity skills through TryHackMe.

A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics

This repo aims to help you decipher the UAL from a Digital Forensics & Incident Response (DFIR) perspective. The UAL is the Microsoft 365 Unified Audit Log.

This repo shares blue team security notes and resources for detecting and preventing cyber attacks. Topics covered include email, file, log, malware, memory forensics, and packet analysis.

Official repo of the paper Zero-Shot Machine Unlearning accepted in IEEE Transactions on Information Forensics and Security

Fork/mirror of Darcs repo for PyFlag (Forensic and Log Analysis GUI)

Security scanner for GitHub repos, Agent Skills, Plugins, and MCP servers. 18 scanners. Zero dependencies.

This repo contains the ENF-WHU audio recording dataset collected around Wuhan University campus and the MATLAB programs for electronic network frequency (ENF) detection, enhancement, and robust estimation, in ENF-based audio forensic applications.

The repo for a digital forensic software analyzing browser history

not the worst forensics regexp—this is not the primary repo; caveat programmer

This repo provides PyTorch implementation of the paper One-Class Knowledge Distillation for Face Presentation Attack Detection to appear on IEEE Transactions on Information Forensics & Security (TIFS).

A repo of utilities built over some period for forensics, anti-forensics, security and analytical purposes

This is a Forensics Report made after a thorough digital examination of the Jeans Case Evidence Image.

A repo that contains links to projects by members of the Digital Forensics Discord Server! This is meant to help promote projects made by our very own members and to support open source development.

I have created this repository purposely to add short notes on some of the things i learn. This repo is intended for n00bs like me in the Forensics field , seasoned investigators and anybody else interested in matters forensics.

Several python scripts for "dump and go" type mobile forensic reports.

No description available

Rust ransomware repo for education/research. Crypto, anti-forensics, code generation, C2.

Official repo of the article: W. A. Yousef, I. Traoré and W. Briguglio, "UN-AVOIDS: Unsupervised and Nonparametric Approach for Visualizing Outliers and Invariant Detection Scoring," in IEEE Transactions on Information Forensics and Security, vol. 16, pp. 5195-5210, 2021, doi: 10.1109/TIFS.2021.3125608.

A repo for the scripts and research regarding OS X Forensics

Repo for my Forensic challenges and Related Data

This repo is the official implementation of “Attack-Resistant Watermarking for AIGC Image Forensics via Diffusion-based Semantic Deflection”. The paper is accepted by ICLR 2026.

A live digital forensic triage tool for GNU/Linux, Windows, and OS X/MacOS targets. This repo is deprecated.

This repo serves the publication of my master thesis with topic: Kubernetes Forensics.

This repo contains detailed results of forensics and DFIR rooms on the TryHackMe platform.

Repo for bashrc functions to help with Linux forensic hunting

This repo has step-by-step writeups for network forensics challenges from CTF competitions, labs, and other practice exercises.

The repo consists of the code and results presented in our research paper "(Security) Assertions by Large Language Models" published at IEEE Transactions on Information Forensics and Security, 2024

In this repo, we are trying how we can extract some useful metadata within images using Pillow library in Python. Devices such as digital cameras, smartphones and scanners uses the EXIF standard to save image or audio files. This standard contains many useful tags to extract which can be useful for forensic investigation, such as the make, model of the device, the exact date and time of image creation and even the GPS information on some devices.

Ghetto forensics repo. Maybe useful in reversing the Optus API issue.