forensics
There are 1323 repositories under forensics topic.
sherlock-project/sherlock
Hunt down social media accounts by username across social networks
WerWolv/ImHex
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
radareorg/radare2
UNIX-like reverse engineering framework and command-line toolset
prowler-cloud/prowler
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
kubeshark/kubeshark
The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes
mvt-project/mvt
MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.
rmusser01/Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Hack-with-Github/Free-Security-eBooks
Free Security and Hacking eBooks
toolswatch/blackhat-arsenal-tools
Official Black Hat Arsenal Security Tools Repository
jekil/awesome-hacking
Awesome hacking is an awesome collection of hacking tools.
WithSecureLabs/chainsaw
Rapidly Search and Hunt through Windows Forensic Artefacts
decalage2/oletools
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
volatilityfoundation/volatility3
Volatility 3.0 development
sleuthkit/sleuthkit
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
google/timesketch
Collaborative forensic timeline analysis
sleuthkit/autopsy
Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera's memory card.
Yamato-Security/hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
dreddsa5dies/goHackTools
Hacker tools on Go (Golang)
danieldurnea/FBI-tools
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
log2timeline/plaso
Super timeline all the things
mikeroyal/Digital-Forensics-Guide
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
frankwxu/digital-forensics-lab
Free hands-on digital forensics labs for students and faculty
simsong/tcpflow
TCP/IP packet demultiplexer. Download from:
Srinivas11789/PcapXray
:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
stuxnet999/MemLabs
Educational, CTF-styled labs for individuals interested in Memory Forensics
AmnestyTech/investigations
Indicators of Compromise from Amnesty International's cyber investigations
PabloLec/RecoverPy
Interactively find and recover deleted or :point_right: overwritten :point_left: files from your terminal
den4uk/andriller
📱 Andriller - is software utility with a collection of forensic tools for smartphones. It performs read-only, forensically sound, non-destructive acquisition from Android devices.
cecio/USBvalve
Expose USB activity on the fly
mesquidar/ForensicsTools
A list of free and open forensics analysis tools and other resources
snovvcrash/usbrip
Tracking history of USB events on GNU/Linux
obsidianforensics/hindsight
Web browser forensics for Google Chrome/Chromium
thehackingsage/hackdroid
Security Apps for Android
tclahr/uac
UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It automates the collection of artifacts from a wide range of Unix-like systems, including AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris.
mozillazg/ptcpdump
Process-aware, eBPF-based tcpdump
ydkhatri/mac_apt
macOS (& ios) Artifact Parsing Tool