eztools

A repository of DFIR-related Mind Maps geared towards the visual learners!

#Awesome#A curated list of KAPE-related resources

A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.

A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub

A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhance the output of those tools

Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!

A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.

Forensic Linux VM for Apple Silicon, ARM64 and x86-64 compatible platforms

A short, focused PowerShell script to automate ensuring that all instances of EZ Tools in a given path have updated ancillary files

OpenRelik ertools worker