A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
security csharp scanner forensics antivirus threat-hunting query-language yara forensic-analysis yara-rules mft yara-scanner forensics-investigations threat-monitor forensics-level-scanning
-
Updated
Mar 25, 2024 - C#