Go221apache-2.0

5 months ago

⭐️ A curated list of awesome forensic analysis tools and resources

4003cc0-1.0

15 days ago

computer-forensicsdfirdigital-forensics

Digital Forensics artifact repository

Python1064apache-2.0

3 months ago

The Sleuth Kit® (TSK) is a library and collection of command line digital forens

C2544

4 months ago

forensicsincident-responsentfs

A package for capturing and analyzing network flow data and intraflow data, for

C1308other

8 months ago

Digital Forensics Investigation Platform

JavaScript745

4 months ago

artifactsdfirdigital-forensics

Web interface for the Volatility Memory Forensics Framework

JavaScript259

7 years ago

OS X Auditor is a free Mac OS X computer forensics tool

JavaScript3128other

4 years ago

Remote forensics meta tool

Shell462gpl-2.0

5 months ago

An advanced memory forensics framework

Python7125gpl-2.0

last year

malwarememorypython

Dissect is a digital forensics & incident response framework and toolset that al

882agpl-3.0

5 months ago

dfirdissectpython

Forensics artefact collection tool for systems running Microsoft Windows

C++364lgpl-2.1

5 months ago

collectiondfirincident-response

Digital Forensics Artifacts Knowledge Base

Python75apache-2.0

6 months ago

Linux Runtime Security and Forensics using eBPF

Go3630apache-2.0

12 days ago

bpfdockerebpf

Web browser forensics for Google Chrome/Chromium

Python1090apache-2.0

15 days ago

chromedfirforensics

A short and small memory forensics helper.

Python52

7 years ago

memory-forensicspythonvolatility

:no_entry: (DEPRECATED) Diffy is a triage tool used during cloud-centric securit

Python635apache-2.0

10 months ago

dfirforensicssecurity

Collection of Event ID ressources useful for Digital Forensics and Incident Resp

589mit

5 months ago

dfirdigitalforensicsforensics

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generat

Rust2113gpl-3.0

4 months ago

attackcybersecuritydetection

Tools and packages that are used for countering forensic activities, including e

HTML790other

12 months ago

anti-forensicanti-forensicsantiforensics

GRR Rapid Response: remote live forensics for incident response

Python4764apache-2.0

2 months ago

inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Inclu

C#279agpl-3.0

last year

attestationcloud-computingforensics

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devi

Python10130other

4 months ago

androidforensicsforensics-tools

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do

Python10398apache-2.0

4 months ago

awsazurecis-benchmark

Rekall Memory Forensic Framework

Python1913gpl-2.0

4 years ago

Incident Response Triage - Windows Evidence Collection for Forensic Analysis

AutoIt127

9 years ago

Forensic tool for acquisition, triage and analysis of remote block devices via i

C#36lgpl-3.0

10 months ago

acquisitioncybersecurityforensics

Incident Response Forensic Framework

Go597

5 years ago

A Windows Batch script and a Unix Bash script to comprehensively collect host fo

Batchfile459other

4 years ago

bashbatchcybersecurity

Collaborative forensic timeline analysis

Python2616apache-2.0

17 days ago

analysisdfirforensics

Anti-forensic macOS tray application designed to safeguard your system by monito

Python332gpl-3.0

last year

anti-forensicsdefensive-securitymacos

A framework for orchestrating forensic collection, processing and data export

Python289apache-2.0

4 months ago

Command line utility and Python package to ease the (un)mounting of forensic dis

Python116mit

2 years ago

'Packet Capture Forensic Evidence eXtractor' is a tool that finds and extracts f

Python212apache-2.0

5 years ago

Rapidly Search and Hunt through Windows Forensic Artefacts

Rust2664gpl-3.0

4 months ago

attackblueteamchainsaw

A forensic evidence collection & analysis toolkit for OS X

Python1878other

5 years ago

AutoMacTC: Automated Mac Forensic Triage Collector

Python520other

3 years ago

🧭 The artifactcollector is a customizable agent to collect forensic artifacts o

Go270mit

last month

dfirdigital-forensicsforensicartifacts

acquire is a tool to quickly gather forensic artifacts from disk images or a liv

Python91agpl-3.0

6 days ago

A tool to help forensicate offline docker acquisitions

Python529apache-2.0

2 months ago

dockerforensics

PowerForensics provides an all in one platform for live disk forensic analysis

C#1386mit

last year

The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic arti

Python334gpl-3.0

2 years ago

Dshell is a network forensic analysis framework.

Python5456other

7 months ago

LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisit

C1679gpl-2.0

6 months ago

Go221apache-2.0

5 months ago

⭐️ A curated list of awesome forensic analysis tools and resources

4003cc0-1.0

15 days ago

computer-forensicsdfirdigital-forensics

Digital Forensics artifact repository

Python1064apache-2.0

3 months ago

The Sleuth Kit® (TSK) is a library and collection of command line digital forens

C2544

4 months ago

forensicsincident-responsentfs

A package for capturing and analyzing network flow data and intraflow data, for

C1308other

8 months ago

Digital Forensics Investigation Platform

JavaScript745

4 months ago

artifactsdfirdigital-forensics

Web interface for the Volatility Memory Forensics Framework

JavaScript259

7 years ago

OS X Auditor is a free Mac OS X computer forensics tool

JavaScript3128other

4 years ago

Remote forensics meta tool

Shell462gpl-2.0

5 months ago

An advanced memory forensics framework

Python7125gpl-2.0

last year

malwarememorypython

Dissect is a digital forensics & incident response framework and toolset that al

882agpl-3.0

5 months ago

dfirdissectpython

Forensics artefact collection tool for systems running Microsoft Windows

C++364lgpl-2.1

5 months ago

collectiondfirincident-response

Digital Forensics Artifacts Knowledge Base

Python75apache-2.0

6 months ago

Linux Runtime Security and Forensics using eBPF

Go3630apache-2.0

12 days ago

bpfdockerebpf

Web browser forensics for Google Chrome/Chromium

Python1090apache-2.0

15 days ago

chromedfirforensics

A short and small memory forensics helper.

Python52

7 years ago

memory-forensicspythonvolatility

:no_entry: (DEPRECATED) Diffy is a triage tool used during cloud-centric securit

Python635apache-2.0

10 months ago

dfirforensicssecurity

Collection of Event ID ressources useful for Digital Forensics and Incident Resp

589mit

5 months ago

dfirdigitalforensicsforensics

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generat

Rust2113gpl-3.0

4 months ago

attackcybersecuritydetection

Tools and packages that are used for countering forensic activities, including e

HTML790other

12 months ago

anti-forensicanti-forensicsantiforensics

GRR Rapid Response: remote live forensics for incident response

Python4764apache-2.0

2 months ago

inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Inclu

C#279agpl-3.0

last year

attestationcloud-computingforensics

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devi

Python10130other

4 months ago

androidforensicsforensics-tools

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do

Python10398apache-2.0

4 months ago

awsazurecis-benchmark

Rekall Memory Forensic Framework

Python1913gpl-2.0

4 years ago

Incident Response Triage - Windows Evidence Collection for Forensic Analysis

AutoIt127

9 years ago

Forensic tool for acquisition, triage and analysis of remote block devices via i

C#36lgpl-3.0

10 months ago

acquisitioncybersecurityforensics

Incident Response Forensic Framework

Go597

5 years ago

A Windows Batch script and a Unix Bash script to comprehensively collect host fo

Batchfile459other

4 years ago

bashbatchcybersecurity

Collaborative forensic timeline analysis

Python2616apache-2.0

17 days ago

analysisdfirforensics

Anti-forensic macOS tray application designed to safeguard your system by monito

Python332gpl-3.0

last year

anti-forensicsdefensive-securitymacos

A framework for orchestrating forensic collection, processing and data export

Python289apache-2.0

4 months ago

Command line utility and Python package to ease the (un)mounting of forensic dis

Python116mit

2 years ago

'Packet Capture Forensic Evidence eXtractor' is a tool that finds and extracts f

Python212apache-2.0

5 years ago

Rapidly Search and Hunt through Windows Forensic Artefacts

Rust2664gpl-3.0

4 months ago

attackblueteamchainsaw

A forensic evidence collection & analysis toolkit for OS X

Python1878other

5 years ago

AutoMacTC: Automated Mac Forensic Triage Collector

Python520other

3 years ago

🧭 The artifactcollector is a customizable agent to collect forensic artifacts o

Go270mit

last month

dfirdigital-forensicsforensicartifacts

acquire is a tool to quickly gather forensic artifacts from disk images or a liv

Python91agpl-3.0

6 days ago

A tool to help forensicate offline docker acquisitions

Python529apache-2.0

2 months ago

dockerforensics

PowerForensics provides an all in one platform for live disk forensic analysis

C#1386mit

last year

The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic arti

Python334gpl-3.0

2 years ago

Dshell is a network forensic analysis framework.

Python5456other

7 months ago

LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisit

C1679gpl-2.0

6 months ago