A curated list of awesome forensic analysis tools and resources
-
Updated
May 26, 2023
#
computer-forensics
Here are 34 public repositories matching this topic...
python
network-diagram
security
pcap
packets
network
tor
traffic
forensics
cybersecurity
computer-forensics
forensic-analysis
tor-traffic
-
Updated
Mar 28, 2022 - Python
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
android
macos
linux
shell
freebsd
security
terminal
openbsd
script
esxi
incident-response
forensics
dfir
netscaler
netbsd
solaris
aix
triage
computer-forensics
live-response
-
Updated
May 31, 2023 - Shell
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
-
Updated
Jan 18, 2022 - Python
The best tools and resources for forensic analysis.
security
analysis
scanner
hacking
forensics
digital-forensics
computer-forensics
forensic-analysis
security-tools
forensics-tools
-
Updated
Feb 24, 2023
A Volatility plugin for finding sqlite database rows
-
Updated
Jul 14, 2019 - Python
This will compile a list of Android, iOS, Linux malware techniques for attacking and detection purposes.
-
Updated
Nov 29, 2022
A live forensic collection script for UNIX-like systems.
linux
shell
freebsd
unix
openbsd
script
posix
forensics
dfir
solaris
computer-forensics
forensic-analysis
blueteam
dfir-automation
live-response
-
Updated
Jun 23, 2023 - Shell
An updated C# port of X-Ways X-Tensions API.
-
Updated
Mar 12, 2018 - C#
Extract valid or partially valid domain names and IPs from malicious or invalid URLs.
python
url
security
extractor
incident-response
domain
penetration-testing
ip
bug-bounty
threat-hunting
domain-name
ethical-hacking
computer-forensics
threat-intelligence
red-team-engagement
defensive-security
-
Updated
Jun 19, 2023 - Python
Docker images of open source forensic tools
-
Updated
Nov 9, 2020 - Shell
LiveDiff is a portable system-level differencing tool for Microsoft Windows-based operating systems
-
Updated
Dec 7, 2018 - C#
Access Expert Witness Format (ewf/E01/L01) files using Golang
-
Updated
Mar 25, 2019 - Go
CTF Suite is a collection of tools you can use during Capture The Flag competitions. These tools are aimed at specific categories of problems and are specific to Jeopardy-style CTFs.
-
Updated
Feb 26, 2021 - Python
A python-based tool to extract forensic info from ActivitiesCache.db (Windows Activity Timeline)
-
Updated
May 3, 2023 - Python
Dockerized Kali Linux + Ubuntu 20.04 for Bug Bounty, Penetration Testing, Security Research, Computer Forensics and Reverse Engineering
docker
dockerfile
ubuntu
docker-compose
makefile
systemd
cybersecurity
bug-bounty
security-vulnerability
kali-linux
vulnerability-detection
vulnerability-scanners
kali
computer-forensics
journalctl
security-tools
buildkit
pentesting-tools
trivy
-
Updated
Jun 18, 2023 - Shell
This repository contains the forensic tools we made.
-
Updated
Feb 17, 2023 - Python
CellXML-Registry.exe is a portable Windows tool that parses an offline Windows Registry hive file and converts it to the RegXML format. CellXML-Registry leverages the Registry parser project by Eric Zimmerman to aid in parsing the Registry structure.
-
Updated
Jun 19, 2018 - C#
Crypto implementations analysis toolkit
cryptography
reverse-engineering
malware-analysis
cryptoanalysis
computer-forensics
entropy-measures
-
Updated
Feb 1, 2019 - C
Guymager is a free forensic imager for media acquisition. It is based on libewf and libguytools.
-
Updated
Feb 23, 2022 - C++
Improve this page
Add a description, image, and links to the computer-forensics topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the computer-forensics topic, visit your repo's landing page and select "manage topics."