Monthly Archives: May 2019

ProcDOT – Tool to Process Procmon and PCAP Logs

ProcDOT is a tool that process Sysinternals Process Monitor (Procmon) logfiles and PCAP-logs (Windump, Tcpdump) to generate a graph via the GraphViz suite.

HashMyFiles – Calculate MD5/SHA1/CRC32 Files Hashes

HashMyFiles is small utility that allows you to calculate the MD5 and SHA1 hashes of one or more files in your system. You can easily copy the MD5/SHA1 hashes list into the clipboard, or save them into text/html/xml file.

Event Log Explorer – Windows Event Log Analysis Program

Windows Event Log Explorer is an effective software solution for viewing, analyzing and monitoring events recorded in Microsoft Windows event logs.

Cyphon – Incident Management and Response Platform

Cyphon is an incident-response platform that receives, processes, and triages events to create a more efficient analytic workflow

Timesketch – Collaborative Forensic Timeline Analysis

Timesketch is an open source tool for collaborative forensic timeline analysis.

Medusa – Parallel Network Login Auditor

Medusa is intended to be a speedy, massively parallel, modular, login brute-forcer.

WallParse Firewall Audit Tool – Firewall Config Analyzer

WallParse Firewall Audit Tool is a firewall audit tool for Cisco ASA firewalls. It parses configuration files from Cisco ASA and there is also experimental support for Fortigate firewall CSV export files.