Crate forensic_catalog

Expand description

forensic-catalog — static indicator tables for forensic analysis.

Provides zero-dependency, std-only lookup functions and constants covering: suspicious network ports, trusted/suspicious filesystem paths, persistence registry keys and paths, Living-Off-the-Land binaries (LOLBins), process masquerading targets, malicious command patterns, and anti-forensics indicators.

Re-exports§

pub use artifact as catalog;

Modules§

antiforensics
artifact: Universal forensic artifact catalog.
commands
encryption
lolbins
paths
pca: Program Compatibility Assistant (PCA) forensic artifact support.
persistence
ports
processes
references: Authoritative reference catalog for each public module.
remote_access
third_party

Crate forensic_catalog

Crate forensic_catalog Copy item path

Re-exports§

Modules§

Crate forensic_catalog