Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for dfir digital forensics
dfir
x
digital-forensics
x
33 search results found
H4cker
⭐
15,693
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
Awesome Forensics
⭐
3,575
A curated list of awesome forensic analysis tools and resources
Thehive
⭐
3,216
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Cortex
⭐
1,237
Cortex: a Powerful Observable Analysis and Active Response Engine
Digital Forensics Guide
⭐
1,232
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
Beagle
⭐
1,171
Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
Memlabs
⭐
689
Educational, CTF-styled labs for individuals interested in Memory Forensics
Kuiper
⭐
688
Digital Forensics Investigation Platform
Forensicstools
⭐
682
A list of free and open forensics analysis tools and other resources
Azurehunter
⭐
626
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
Linuxforensics
⭐
611
Everything related to Linux Forensics
Awesome Event Ids
⭐
515
Collection of Event ID ressources useful for Digital Forensics and Incident Response
Dfirtrack
⭐
464
DFIRTrack - The Incident Response Tracking Application
Cortex Analyzers
⭐
400
Cortex Analyzers Repository
Dfirmindmaps
⭐
381
A repository of DFIR-related Mind Maps geared towards the visual learners!
Memprocfs Analyzer
⭐
358
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
Catalyst
⭐
237
Catalyst is an open source SOAR and ticket system that helps to automate alert handling and incident response processes
Dfir Toolkit
⭐
222
CLI tools for forensic investigation of Windows artifacts
Thehive4py
⭐
201
Python API Client for TheHive
Collect Memorydump
⭐
186
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
Artifactcollector
⭐
184
🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
Mde Dfir Resources
⭐
184
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
Awesome Kape
⭐
123
A curated list of KAPE-related resources
Fucking Awesome Incident Response
⭐
113
A curated list of tools for incident response. With repository stars⭐ and forks🍴
Rdpcachestitcher
⭐
106
RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
Ccl_chrome_indexeddb
⭐
98
(Sometimes partial) Python re-implementations of the technologies involved in reading various data sources in Chrome-esque applications.
Artifacts
⭐
56
📇 Digital Forensics Artifact Repository (forensicanalysis edition)
Incidents
⭐
55
Please use https://github.com/veeral-patel/true-positive instead
Windows Forensic Artifacts
⭐
51
Handbook of windows forensic artifacts across multiple Windows version with interpretation tips with some examples. Work in progress!
Indxripper
⭐
45
Carve file metadata from NTFS index ($I30) attributes
Elementary
⭐
41
🕵️ Process and show forensic artifacts (e.g. eventlogs, usb devices, network devices...) in forensicstores
Dfirregex
⭐
40
A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.
Kape Eztoolsancillaryupdater
⭐
40
A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhance the output of those tools
Ds4n6_lib
⭐
32
Library of functions to apply Data Science in several forensics artifacts
Pofr
⭐
31
Penguin OS Forensic (or Flight) Recorder
Eventtranscript.db Research
⭐
30
A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.
Ds4n6_scripts
⭐
20
Library of python scripts to apply Data Science in several forensics artifacts
Anti Forensics Vhdx
⭐
19
A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. Please add a new issue if you have an idea for something to add.
Dfdewey
⭐
14
Simpleimager
⭐
12
Simple Imager has been created for performing live acquisition of Windows based systems in a forensically sound manner
Dfir.science
⭐
8
The DFIR.Science research blog about digital forensic investigation.
Walletsleuth
⭐
7
Cryptocurrency Triage Tool - Identify multiple cryptocurrency addresses from various wallet applications!
Get Minitimeline
⭐
6
Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
Related Searches
Python Dfir (128)
Forensics Dfir (106)
1-33 of 33 search results
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.