Metadata-Remover
awesome-anti-forensic
Our great sponsors
Metadata-Remover | awesome-anti-forensic | |
---|---|---|
1 | 2 | |
68 | 655 | |
- | - | |
6.6 | 3.2 | |
2 months ago | 5 months ago | |
Python | HTML | |
GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Metadata-Remover
awesome-anti-forensic
-
How to wipe a drive beyond forensic recoverability?
Take a look at awesome-anti-forensic
-
Hiding Files and Processes
Some dumps from my bookmark grave; keep an eye on the reference section of the research papers: - https://www.researchgate.net/profile/Robert-Luh-2/publication/319868952_The_Evolution_of_Process_Hiding_Techniques_in_Malware_-_Current_Threats_and_Possible_Countermeasures/links/59e896faaca272bc4240a539/The-Evolution-of-Process-Hiding-Techniques-in-Malware-Current-Threats-and-Possible-Countermeasures.pdf - https://i.blackhat.com/USA-20/Wednesday/us-20-Block-Hiding-Process-Memory-Via-Anti-Forensic-Techniques.pdf - https://www.elastic.co/blog/ten-process-injection-techniques-technical-survey-common-and-trending-process - https://github.com/shadawck/awesome-anti-forensic - https://www.sciencedirect.com/science/article/abs/pii/S1361372320300300 - https://archive.org/details/youtube-_fZfDGWpP4U - https://github.com/VanirLab/weever - https://github.com/dasec/fishy
What are some alternatives?
swiftGuard - Anti-forensic macOS tray application designed to safeguard your system by monitoring USB ports.
awesome-incident-response - A curated list of tools for incident response
presidio - Context aware, pluggable and customizable data protection and de-identification SDK for text and images
weever - An Experimental Framework for Implementing Filesystem-Based Data Hiding
ulexecve - ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teaming and anti-forensics purposes.
awesome-openid-connect - OpenID Connect, the authentication protocol and identity layer on top of OAuth 2.0 used in many SSO and adopted in many social logins (Apple, Facebook, Google, ...etc). Find this curated list of providers, services, libraries, and resources to adopt it and know more about existing specs.