TOOLS
This page contains a list of tools that have been released and/or compiled by BriMor Labs.
Please remember that every effort has been made to ensure the tools will work properly but by downloading and using the tools, you are doing so at your own risk.
Live Response Collection – Cedarpelta Build – Automated tool that collects volatile data from Windows, OSX/macOS, and *nix based operating systems
Date Last Updated: 20190905
md5: 7bc32091c1e7d773162fbdc9455f6432
SHA256: 2c32984adf2b5b584761f61bd58b61dfc0c62b27b117be40617fa260596d9c63
Windows Live Messenger iOS parser – Zipped Perl script that attempts to parse message data from Windows Live Messenger files on iOS devices
md5: 64f90e23c106134fc3b934aab06b22a7
SHA256: 65099b74906b1f6505d84ec84e1ebc7159f4475f34be596059ba209ba29ef08a
Prefetch IOC parser – Zipped Perl script that attempts to analyze Prefetch files for possible indicators of compromise
md5: 2203f1d179f06fcb9d56685114ee339f
SHA256: 505413d130a21c0f457cd58dcf792ddb9f29435b51fd7d534d0c26537afdb256
buatapa – Zipped Python script that attempts to identify items of interest from a Sysinternals autoruns.csv file
md5: 8c2f9dc33094b3c5635bd0d61dbeb979
SHA256: c1f67387484d7187a8c40171d0c819d4c520cb8c4f7173fc1bba304400846162