mirror of
https://github.com/autistic-symposium/sec-pentesting-toolkit.git
synced 2025-05-17 14:10:31 -04:00
| .. | ||
| readings | ||
| scripts | ||
| README.md | ||
| volatility.md | ||
Forensics
Disk Forensics
dd
strings
$ strings /tmp/mem.dump | grep BOOT_
$ BOOT_IMAGE=/vmlinuz-3.5.0-23-generic
scalpel
TrID
binwalk
foremost
ExifTool
Hex editors
dff
CAINE
The Sleuth Kit
Memory Forensics
memdump
Volatility: Analysing Dumps
- I have a lot of material on Volatility and Memory Forensics here
- I highly reccomend their training.
Scripts
PDFs
Tools to test a PDF file:
- pdfid
- pdf-parser