Description

Provide forensics tools unavailable in nixpkgs.

List

analyzeMFT: MFT Parser
bmc-tools: RDP Bitmap Cache parser
docker-explorer: Offline docker acquisitions
hindsight: Web browser forensics for Google Chrome/Chromium
Mac-Locations-Scraper: macOS/iOS location data extractor
PsqlHunter: Hunt sql commands in pcap
recuperabit: A tool for forensic file system reconstruction
regrippy: A modern Python-3-based alternative to RegRipper
timeliner: A rewrite of mactime, a bodyfile reader
usnparser: A command utility to read and monitor the NTFS/ReFS USN change Journal
xLEAPP: xLEAPP - Merging of iLEAPP/RLEAPP/vLEAPP, ALEAPP, cLEAPP
yarGen: yarGen is a generator for YARA rules

git clone https://github.com/MikeHorn-git/nixpkgs-forensics.git
cd nixpkgs-forensics

nix-build -A packages.$(Package)

nix-build -A packages.yarGen

nix-build -A defaultPackage

Name		Name	Last commit message	Last commit date
Latest commit History 7 Commits
Mac-Locations-Scraper		Mac-Locations-Scraper
PsqlHunter		PsqlHunter
analyzeMFT		analyzeMFT
bmc-tools		bmc-tools
docker-explorer		docker-explorer
hindsight		hindsight
recuperabit		recuperabit
regrippy		regrippy
timeliner		timeliner
usnparser		usnparser
xleapp		xleapp
yarGen		yarGen
LICENSE		LICENSE
README.md		README.md
default.nix		default.nix