Powerful access to data

Projects and experiments by @easymetadata. This page lists public repositories directly from GitHub.

Welcome to EasyMetaData. We focus on helping you understand and analyze information better. Whether you are an IT professional, InfoSec practitioner, or DFIR analyst, our tools aim to make exploring the metadata that lurks in everthing.

Browse repositories View projects

Projects

MetaDiver

An easy-to-use solution for extracting and reviewing metadata from files, email, and system artifacts on Windows. Supports PST, MSG, EML, PDF, Office, images, media, and thousands more via engines like Apache Tika and Outlook Redemption.

IP Tools

IP geo ip and threat lookup enrichment python scripts.

ShadowKit

Recover previous versions of files on Windows, including versions not available via Explorer. Especially useful on Windows 8 and later.

Projects on GitHub

Explore scripts, tools, and experiments maintained under the EasyMetaData GitHub account.

Resources

Forensic Lunch (Video Podcasts)

A YouTube channel devoted to computer forensics.

#DFIR on Twitter/X

Digital Forensics and Incident Response posts and discussions.

@sansforensics

SANS DFIR for articles, webcasts, and re-tweets.

@HECFBlog

Hacking Exposed Computer Forensics Blog by David Cowen with daily posts.

Lists

DFIR Investigations (GitHub List)

Curated tools and references for DFIR investigations, including timelining, parsing, and analysis.

Geo IP and IP Intel (GitHub List)

Feeds and tools for IP reputation, ASN data, and threat intelligence enrichment.

Metadata (GitHub List)

A collection for metadata-related resources and tooling. May be empty as it evolves.

IoT (GitHub List)

Resources focused on IoT security, forensics, and analysis.

Books on Forensics

Computer Forensics (InfoSec Pro Guide)

A practical guide covering techniques and processes used in computer forensics.

Hacking Exposed: Computer Forensics

Techniques and case studies from the Hacking Exposed series focused on forensics.

GitHub Repositories

Loading repositories…