BlueSploit

This release contains:

• Added new modules
  • "Yara" support
  • "Collect" artifacts
  • "IOC" extract/defang
  • "Hash" individual files or everything inside a directory
• Code review

BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
Most of the commands used are OS native commands. Native commands have their limitations, therefore, some executables will be used.

BlueSploit

BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
Most of the commands used are OS native commands. Native commands have their limitations, therefore, some executables will be used.

BlueSploit

BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
Most of the commands used are OS native commands. Native commands have their limitations, therefore, some executables will be used.

BlueSploit

BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
Most of the commands used are OS native commands. Native commands have their limitations, therefore, some executables will be used.

BlueSploit

BlueSploit is a DFIR framework that will make it easy for the analyst to kick off an investigation.
The aim of this framework is to use mostly "live of the land" tools in PowerShell and make the investigation a breeze with only a standalone executable.