forensic_catalog/lib.rs
1//! forensic-catalog — static indicator tables for forensic analysis.
2//!
3//! Provides zero-dependency, `std`-only lookup functions and constants covering:
4//! suspicious network ports, trusted/suspicious filesystem paths, persistence
5//! registry keys and paths, Living-Off-the-Land binaries (LOLBins), process
6//! masquerading targets, malicious command patterns, and anti-forensics indicators.
7
8pub mod antiforensics;
9pub mod artifact;
10pub use artifact as catalog;
11pub mod commands;
12pub mod encryption;
13pub mod lolbins;
14pub mod paths;
15pub mod pca;
16pub mod persistence;
17pub mod ports;
18pub mod processes;
19pub mod references;
20pub mod remote_access;
21pub mod third_party;