Awesome Open Source

Programming Languages

Search results for forensics

660 search results found

Imhex ⭐ 31,549

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

Radare2 ⭐ 19,593

UNIX-like reverse engineering framework and command-line toolset

Kubeshark ⭐ 10,247

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes

Prowler ⭐ 9,547

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.

Awesome Incident Response ⭐ 6,852

A curated list of tools for incident response

Infosec_reference ⭐ 5,348

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

GRR Rapid Response: remote live forensics for incident response

Free Security Ebooks ⭐ 4,126

Free Security and Hacking eBooks

Blackhat Arsenal Tools ⭐ 3,551

Official Black Hat Arsenal Security Tools Repository

Awesome Hacking ⭐ 2,716

Awesome hacking is an awesome collection of hacking tools.

Oletools ⭐ 2,665

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

Chainsaw ⭐ 2,519

Rapidly Search and Hunt through Windows Forensic Artefacts

Timesketch ⭐ 2,435

Collaborative forensic timeline analysis

Sleuthkit ⭐ 2,419

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.

Ctf Katana ⭐ 2,184

This repository aims to hold suggestions (and hopefully/eventually code) for CTF challenges. The "project" is nicknamed Katana.

Autopsy ⭐ 2,087

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera's memory card.

Gohacktools ⭐ 2,069

Hacker tools on Go (Golang)

Volatility3 ⭐ 2,010

Volatility 3.0 development

Hayabusa ⭐ 1,800

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Pcapxray ⭐ 1,636

❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

Tcpflow ⭐ 1,587

TCP/IP packet demultiplexer. Download from:

Plaso ⭐ 1,576

Super timeline all the things

Sparrow ⭐ 1,357

Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 environment.

Digital Forensics Guide ⭐ 1,232

Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

Digital Forensics Lab ⭐ 1,230

Free hands-on digital forensics labs for students and faculty

Recoverpy ⭐ 1,163

Interactively find and recover deleted or 👉 overwritten 👈 files from your terminal

Fbi Tools ⭐ 1,153

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

Usbrip ⭐ 1,059

Tracking history of USB events on GNU/Linux

Artifacts ⭐ 938

Digital Forensics Artifact Repository

Hindsight ⭐ 925

Web browser forensics for Google Chrome/Chromium

Andriller ⭐ 899

📱 Andriller - is software utility with a collection of forensic tools for smartphones. It performs read-only, forensically sound, non-destructive acquisition from Android devices.

Iris Web ⭐ 862

Collaborative Incident Response platform

IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners.

Hackdroid ⭐ 753

Pentesting Using Android

Turbinia ⭐ 689

Automation and Scaling of Digital Forensics Tools

Memlabs ⭐ 689

Educational, CTF-styled labs for individuals interested in Memory Forensics

Osx Security Awesome ⭐ 687

A collection of OSX and iOS security resources

Forensicstools ⭐ 682

A list of free and open forensics analysis tools and other resources

Mac_apt ⭐ 675

macOS (& ios) Artifact Parsing Tool

Operative Framework ⭐ 661

operative framework is a rust investigation OSINT framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.

⛔ (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.

Linuxforensics ⭐ 611

Everything related to Linux Forensics

Python Evtx ⭐ 596

Pure Python parser for recent Windows Event Log files (.evtx)

OSINT Swiss Army Knife

Avillaforensics ⭐ 552

Avilla Forensics 3.0

UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.

Awesome Event Ids ⭐ 515

Collection of Event ID ressources useful for Digital Forensics and Incident Response

Recuperabit ⭐ 499

A tool for forensic file system reconstruction.

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

SIEM Tactics, Techiques, and Procedures

Docker Explorer ⭐ 485

A tool to help forensicate offline docker acquisitions

Malconfscan ⭐ 462

Volatility plugin for extracts configuration data of known malware

Live Forensicator ⭐ 460

Powershell Script to aid Incidence Response and Live Forensics | Bash Script for MacOS Live Forensics and Incidence Response

A single file container/archive that can be reconstructed even after total loss of file system structures

Aws Security Automation ⭐ 442

Collection of scripts and resources for DevSecOps and Automated Incident Response Security

Bitscout ⭐ 423

Remote forensics meta tool

Cloud Forensics Utils ⭐ 418

Python library to carry out DFIR analysis on the Cloud

Meerkat ⭐ 407

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

Flare Wmi ⭐ 405

Snaprecovery ⭐ 400

Recover old Snaps that have “disappeared” from Snapchat

Adtimeline ⭐ 398

Timeline of Active Directory changes with replication metadata

Awesome Forensics ⭐ 382

Awesome Forensics Resources. Almost 300 open source forensics tools, and 600 blog posts about forensics.

Whatsapp Key Database Extractor ⭐ 378

The most advanced and complete solution for extracting WhatsApp key/DB from package directory (/data/data/com.whatsapp) without root access.

Forensia ⭐ 377

Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.

A Linux packet crafting tool.

Swap_digger ⭐ 376

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.

Libelfmaster ⭐ 367

Secure ELF parsing/loading library for forensics reconstruction of malware, and robust reverse engineering tools

Enablewindowslogsettings ⭐ 343

Documentation and scripts to properly enable Windows event logs.

Linux Explorer ⭐ 332

Easy-to-use live forensics toolbox for Linux endpoints

Web3 Security Tools ⭐ 329

This repository contains a list of the most popular and widely used tools in web3 security. If you find any tools missing, you can create a pull request and be a contribute the project.

Ir Rescue ⭐ 309

A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.

Osint Forensics Mobile ⭐ 303

Tools OSINT MOBILE

Ctf Literature ⭐ 301

Collection of free books, papers and articles related to CTF challenges.

Uscrapper ⭐ 298

Uscrapper 2.0, a powerful OSINT webscraper for personal data collection. Uscrapper uses web scraping to extract email IDs, social-media links, geolocations, phone numbers, and usernames from webpages, supports multithreading, has advanced Anti-webscraping bypassing modules, supports webcrawling to scrape from various sublinks within the same domain

FAT filesystems explore, extract, repair, and forensic tool

Cyber Sec Resources ⭐ 277

An organized list of resources including tools, blog-posts and how-to tutorials compiled and created by SCSP community members.

Tryhackme Roadmap ⭐ 274

a list of 350+ Free TryHackMe rooms to start learning cybersecurity with THM

Code Forensics ⭐ 272

A toolset for code analysis and report visualisation

Forensictools ⭐ 270

Collection of forensic tools

Invtero.net ⭐ 269

inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques

Swishdbgext ⭐ 268

Incident Response & Digital Forensics Debugging Extension

Forensic Tools ⭐ 261

A collection of tools for forensic analysis

Library and tools to access the Personal Folder File (PFF) and the Offline Folder File (OFF) format

Forensic Tools ⭐ 252

A collection of tools for forensic analysis

Threathunting Keywords ⭐ 252

Awesome list of keywords for Threat Hunting sessions

Collection of forensics artifacs location for Mac OS X and iOS

Windows_security ⭐ 245

Is Windows a joke or are you? 🧢

Robot_hacking_manual ⭐ 236

Robot Hacking Manual (RHM). From robotics to cybersecurity. Papers, notes and writeups from a journey into robot cybersecurity.

Psgumshoe ⭐ 229

Practical Windows Forensics Training

Androidqf ⭐ 224

androidqf (Android Quick Forensics) helps quickly gathering forensic evidence from Android devices, in order to identify potential traces of compromise.

Dfir Toolkit ⭐ 222

CLI tools for forensic investigation of Windows artifacts

Userline ⭐ 217

Query and report user logons relations from MS Windows Security Events

Whatsdump ⭐ 215

Extract WhatsApp private key from any non-rooted Android device (Android 7+ supported)

Dfir O365rc ⭐ 214

PowerShell module for Office 365 and Azure log collection

Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of particular use when investigating a security incident.

Linux Process Discovery. C Library, Go bindings, Runtime.

Kube Forensics ⭐ 207

1-100 of 660 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.