Skip to content
@fox-it

Fox-IT

Part of NCC Group

Popular repositories Loading

  1. dissect dissect Public

    Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (pa…

    1k 76

  2. aclpwn.py aclpwn.py Public

    Active Directory ACL exploitation with BloodHound

    Python 744 107

  3. Invoke-ACLPwn Invoke-ACLPwn Public

    PowerShell 526 90

  4. log4j-finder log4j-finder Public

    Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)

    Python 437 96

  5. cve-2019-1040-scanner cve-2019-1040-scanner Public

    Python 298 56

  6. dissect.cstruct_legacy dissect.cstruct_legacy Public

    A no-nonsense c-like structure parsing library for Python

    Python 240 24

Repositories

Showing 10 of 89 repositories
  • dissect.fve Public

    A Dissect module implementing a parsers for full volume encryption implementations, currently Microsoft's Bitlocker Disk Encryption (BDE) and Linux Unified Key Setup (LUKS1 and LUKS2).

    fox-it/dissect.fve’s past year of commit activity
    Python 4 AGPL-3.0 2 1 1 Updated Oct 1, 2025
  • dissect.target Public

    The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access to various data sources inside disk images or file collections (a.k.a. targets).

    fox-it/dissect.target’s past year of commit activity
    Python 73 AGPL-3.0 69 155 (1 issue needs help) 34 Updated Oct 1, 2025
  • dissect.volume Public

    A Dissect module implementing a parser for different disk volume and partition systems, for example LVM2, GPT and MBR.

    fox-it/dissect.volume’s past year of commit activity
    Python 3 AGPL-3.0 3 2 1 Updated Sep 30, 2025
  • dissect.sql Public

    A Dissect module implementing a parsers for the SQLite database file format, commonly used by applications to store configuration data.

    fox-it/dissect.sql’s past year of commit activity
    Python 6 AGPL-3.0 6 3 1 Updated Sep 30, 2025
  • dissect.esedb Public

    A Dissect module implementing a parser for Microsofts Extensible Storage Engine Database (ESEDB), used for example in Active Directory, Exchange and Windows Update.

    fox-it/dissect.esedb’s past year of commit activity
    Python 21 Apache-2.0 11 1 1 Updated Sep 30, 2025
  • citrix-netscaler-triage Public

    Dissect triage scripts for Citrix NetScaler devices

    fox-it/citrix-netscaler-triage’s past year of commit activity
    Python 61 Apache-2.0 16 0 0 Updated Sep 30, 2025
  • dissect.database Public

    A Dissect module implementing parsers for various database formats

    fox-it/dissect.database’s past year of commit activity
    Python 1 Apache-2.0 2 1 2 Updated Sep 26, 2025
  • flow.record Public

    Recordization library

    fox-it/flow.record’s past year of commit activity
    Python 9 AGPL-3.0 13 8 6 Updated Sep 25, 2025
  • dissect Public

    Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (part of NCC Group).

    fox-it/dissect’s past year of commit activity
    1,044 AGPL-3.0 76 5 1 Updated Sep 25, 2025
  • dissect.eventlog Public

    A Dissect module implementing parsers for the Windows EVT, EVTX and WEVT log file formats.

    fox-it/dissect.eventlog’s past year of commit activity
    Python 7 AGPL-3.0 3 4 0 Updated Sep 25, 2025
View all repositories