{"payload":{"pageCount":3,"repositories":[{"type":"Public","name":"presentations","owner":"Velocidex","isFork":false,"description":"Presentations and Workshops","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"HTML","color":"#e34c26"},"pullRequestCount":1,"issueCount":0,"starsCount":2,"forksCount":3,"license":null,"participation":[0,0,0,1,0,0,1,0,0,0,0,0,5,1,0,2,0,0,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,1,0,3],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-23T13:30:17.453Z"}},{"type":"Public","name":"velociraptor-docs","owner":"Velocidex","isFork":false,"description":"Documentation site for Velociraptor","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"HTML","color":"#e34c26"},"pullRequestCount":16,"issueCount":8,"starsCount":30,"forksCount":173,"license":"Other","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-23T12:55:29.914Z"}},{"type":"Public","name":"velociraptor","owner":"Velocidex","isFork":false,"description":"Digging Deeper....","topicNames":["incident-response","inventory-management","digital-forensics","endpoint-protection","endpoint-discovery","forensics-investigations","endpoint-security"],"topicsNotShown":0,"allTopics":["incident-response","inventory-management","digital-forensics","endpoint-protection","endpoint-discovery","forensics-investigations","endpoint-security"],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":9,"issueCount":87,"starsCount":2710,"forksCount":454,"license":"Other","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-22T21:26:30.295Z"}},{"type":"Public","name":"WinPmem","owner":"Velocidex","isFork":false,"description":"The multi-platform memory acquisition tool.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":22,"starsCount":610,"forksCount":94,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-18T10:29:31.992Z"}},{"type":"Public","name":"ttlcache","owner":"Velocidex","isFork":true,"description":"An in-memory string-interface{} map with various expiration options for golang","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":114,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-17T14:51:23.348Z"}},{"type":"Public","name":"cloudvelo","owner":"Velocidex","isFork":false,"description":"An experimental Velociraptor implementation using cloud infrastructure","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":1,"issueCount":1,"starsCount":17,"forksCount":8,"license":"Other","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-14T11:42:40.144Z"}},{"type":"Public","name":"Linpmem","owner":"Velocidex","isFork":false,"description":"Linpmem is a linux memory acquisition tool","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":1,"starsCount":57,"forksCount":6,"license":"GNU General Public License v2.0","participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,0,6,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,3,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-11T13:30:11.636Z"}},{"type":"Public","name":"vfilter","owner":"Velocidex","isFork":false,"description":"A library implementing a generic SQL like query language.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":19,"forksCount":8,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-07T15:54:50.299Z"}},{"type":"Public","name":"velociraptor-sigma-rules","owner":"Velocidex","isFork":false,"description":"A Compiler from Sigma rules to VQL","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":6,"forksCount":3,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-05T04:53:34.212Z"}},{"type":"Public","name":"sigma-go","owner":"Velocidex","isFork":true,"description":"A Go implementation and parser for Sigma rules.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":18,"license":"MIT License","participation":[0,0,0,0,0,0,0,1,0,0,0,0,1,0,0,1,0,0,0,0,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,2,0,0,3,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-05T02:45:31.690Z"}},{"type":"Public","name":"registry_hunter","owner":"Velocidex","isFork":false,"description":"Hunt the windows Registry automatically using VQL","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Rebol","color":"#358a5b"},"pullRequestCount":0,"issueCount":0,"starsCount":2,"forksCount":1,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-01T04:35:03.744Z"}},{"type":"Public","name":"go-ntfs","owner":"Velocidex","isFork":false,"description":"An NTFS file parser in Go","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":1,"issueCount":3,"starsCount":64,"forksCount":24,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-11T00:11:04.226Z"}},{"type":"Public","name":"regparser","owner":"Velocidex","isFork":false,"description":"A Golang Registry parser","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":1,"starsCount":10,"forksCount":7,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-04T11:57:56.822Z"}},{"type":"Public","name":"binparsergen","owner":"Velocidex","isFork":false,"description":"Binary Parser Generator for Go","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":5,"forksCount":4,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-04T11:49:47.695Z"}},{"type":"Public","name":"go-yara","owner":"Velocidex","isFork":true,"description":"Go bindings for YARA","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"C","color":"#555555"},"pullRequestCount":0,"issueCount":0,"starsCount":12,"forksCount":111,"license":"BSD 2-Clause \"Simplified\" License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-03-09T15:54:56.924Z"}},{"type":"Public","name":"Audit","owner":"Velocidex","isFork":false,"description":"Collection of Audit and Compliance related VQL artifacts","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":2,"forksCount":3,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-02-16T17:06:39.441Z"}},{"type":"Public","name":"go-ewf","owner":"Velocidex","isFork":false,"description":"A Library for reading EWF files","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":2,"forksCount":1,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-02-10T12:34:48.522Z"}},{"type":"Public","name":"SQLiteHunter","owner":"Velocidex","isFork":false,"description":"Hunt for SQLite files used by various applications","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":3,"starsCount":7,"forksCount":9,"license":"GNU Affero General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-02-09T04:44:45.988Z"}},{"type":"Public","name":"go-ese","owner":"Velocidex","isFork":false,"description":"Go implementation of an Extensible Storage Engine parser","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":2,"starsCount":25,"forksCount":12,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-02-07T00:54:45.252Z"}},{"type":"Public","name":"vtypes","owner":"Velocidex","isFork":false,"description":"VTypes is a data driven binary parsing system in Go.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":10,"forksCount":3,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-01-23T10:56:04.936Z"}},{"type":"Public","name":"pyvelociraptor","owner":"Velocidex","isFork":false,"description":"PyVelociraptor contains the python bindings for the Velociraptor API.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":2,"starsCount":15,"forksCount":5,"license":"Other","participation":[0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-12-26T13:32:51.321Z"}},{"type":"Public","name":"etw","owner":"Velocidex","isFork":true,"description":"Go library for ETW (Event Tracing for Windows) events processing","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":19,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-11-15T14:47:03.284Z"}},{"type":"Public","name":"sflags","owner":"Velocidex","isFork":true,"description":"Generate flags by parsing structures","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":36,"license":"BSD 3-Clause \"New\" or \"Revised\" License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-10-11T08:17:06.253Z"}},{"type":"Public","name":"go-fat","owner":"Velocidex","isFork":false,"description":"Parser for FAT filesystems","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":2,"forksCount":0,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-09-23T16:55:38.990Z"}},{"type":"Public","name":"ordereddict","owner":"Velocidex","isFork":false,"description":"A simple Ordered Dict implementation.","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":4,"forksCount":3,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-09-09T17:41:58.619Z"}},{"type":"Public","name":"oleparse","owner":"Velocidex","isFork":false,"description":"Golang parser for OLE files","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":1,"issueCount":1,"starsCount":30,"forksCount":3,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-08-28T06:23:29.525Z"}},{"type":"Public","name":"Tools","owner":"Velocidex","isFork":false,"description":"Distribute third party tools for use with Velociraptor","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":0,"starsCount":9,"forksCount":3,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-06-20T00:54:28.766Z"}},{"type":"Public","name":"grok","owner":"Velocidex","isFork":true,"description":"simple library to use/parse grok patterns with go (100%)","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":87,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-03-28T03:43:34.872Z"}},{"type":"Public","name":"c-aff4","owner":"Velocidex","isFork":false,"description":"An AFF4 C++ implementation. ","topicNames":["digital-forensics","compression-library","compression-formats","forensics"],"topicsNotShown":0,"allTopics":["digital-forensics","compression-library","compression-formats","forensics"],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":4,"issueCount":27,"starsCount":182,"forksCount":34,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-03-24T00:21:24.701Z"}},{"type":"Public","name":"go-pe","owner":"Velocidex","isFork":false,"description":"A Portable Executable parser for Golang","topicNames":[],"topicsNotShown":0,"allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":46,"forksCount":23,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-02-28T11:21:50.818Z"}}],"repositoryCount":63,"userInfo":null,"searchable":true,"definitions":[],"typeFilters":[{"id":"all","text":"All"},{"id":"public","text":"Public"},{"id":"source","text":"Sources"},{"id":"fork","text":"Forks"},{"id":"archived","text":"Archived"},{"id":"template","text":"Templates"}],"compactMode":false},"title":"Repositories"}