digital-forensics
There are 252 repositories under digital-forensics topic.
cugu/awesome-forensics
A curated list of awesome forensic analysis tools and resources
TheHive-Project/TheHive
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Velocidex/velociraptor
Digging Deeper....
simsong/tcpflow
TCP/IP packet demultiplexer. Download from:
stuxnet999/MemLabs
Educational, CTF-styled labs for individuals interested in Memory Forensics
mikeroyal/Digital-Forensics-Guide
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
yampelo/beagle
Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
TheHive-Project/Cortex
Cortex: a Powerful Observable Analysis and Active Response Engine
emalderson/ThePhish
ThePhish: an automated phishing email analysis tool
rezaduty/cybersecurity-career-path
Cybersecurity Career Path
dfir-iris/iris-web
Collaborative Incident Response platform
spieglt/whatfiles
Log what files are accessed by any Linux process
mesquidar/ForensicsTools
A list of free and open forensics analysis tools and other resources
sepinf-inc/IPED
IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners.
darkquasar/AzureHunter
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
DFIRKuiper/Kuiper
Digital Forensics Investigation Platform
ashemery/LinuxForensics
Everything related to Linux Forensics
AvillaDaniel/AvillaForensics
Avilla Forensics 3.0
dfirtrack/dfirtrack
DFIRTrack - The Incident Response Tracking Application
ivbeg/awesome-forensicstools
Awesome list of digital forensic tools
TheHive-Project/Cortex-Analyzers
Cortex Analyzers Repository
evild3ad/MemProcFS-Analyzer
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
TheHive-Project/TheHiveDocs
Documentation of TheHive
vm32/Linux-Incident-Response
practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response
cyb3rmik3/MDE-DFIR-Resources
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
RealityNet/kobackupdec
Huawei backup decryptor
SecurityBrewery/catalyst
Catalyst is an open source SOAR and ticket system that helps to automate alert handling and incident response processes
MK-Ware/Forensic-Tools
A collection of tools for forensic analysis
digitalisx/awesome-memory-forensics
A curated list of awesome Memory Forensics for DFIR
forensicanalysis/artifactcollector
🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
6abd/horus
An OSINT / digital forensics tool built in Python (formerly 'Sentinel')
dfir-dd/dfir-toolkit
CLI tools for forensic investigation of Windows artifacts
evild3ad/Collect-MemoryDump
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
Psmths/windows-forensic-artifacts
Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!
TheHive-Project/TheHive4py
Python API Client for TheHive
Velocidex/c-aff4
An AFF4 C++ implementation.