Velocistack is a free and open source solution for streamlined host-based forensics and investigation.
- Collect forensic artifacts
- Post-process collections
- Visualize collections or hunt results
- Create cases for investigation
- Enrich results with additional context
Step 1. Download Velocistack.
git clone https://github.com/weslambert/velocistack &&\
cd velocistack/velocistack
Step 2. Run Docker Compose.
docker compose --profile velocistack up
Step 3. Login to Velociraptor and/or other apps using the information below.
App | Working | URL |
---|---|---|
Velociraptor | ✓ | https://localhost/velocistack/ |
Cyberchef | https://localhost/velocistack/cyberchef/ | |
Intel Owl | ✓ | https://localhost/velocistack/intelowl/ |
IRIS | ✓ | https://localhost/velocistack/iris/ |
Kibana | ✓ | https://localhost/velocistack/kibana/ |
Prometheus | https://localhost/velocistack/prometheus/ | |
Grafana | https://localhost/velocistack/grafana/ |