PowerForensics
Forensic analyzer
A C#-based framework for analyzing and investigating hard drive forensic data
PowerForensics provides an all in one platform for live disk forensic analysis
1k stars
158 watching
274 forks
Language: C#
last commit: over 1 year ago
Linked from 4 awesome lists
meirwah/awesome-incident-response
janikvonrotz/awesome-powershell
fabacab/awesome-cybersecurity-blueteam
cugu/awesome-forensicsRelated projects:
| Repository | Description | Stars |
|---|---|---|
| invoke-ir/forensicposters | A tool for creating and analyzing digital poster forensics data | 437 |
 swisscom/invoke-forensics | Tools for automating forensic analysis with KAPE and RegRipper | 109 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 149 |
| invoke-ir/ace | A suite of tools for automating data collection and enrichment across multiple operating systems. | 322 |
 microsoft/infersharp | A tool that analyzes C# code for potential issues such as null pointer dereferences and resource leaks to help detect security vulnerabilities. | 737 |
 jimtin/ircoreforensicframework | Automates incident response actions to gather and process forensic artefacts from remote systems | 22 |
 flo354/iosforensic | A tool to aid in forensic analysis of iOS devices | 63 |
 mgreen27/invoke-liveresponse | A live response tool for targeted collection of data from compromised devices. | 145 |
 anssi-fr/dfir4vsphere | A PowerShell module for collecting logs and forensics data from VMware vSphere environments. | 143 |
 thehive-project/cortex-analyzers | Develops and stores Cortex analyzers & responders for incident response and threat intelligence. | 437 |
 vitaly-kamluk/bitscout | A customizable tool for creating bootable disk images for remote system analysis and forensic investigations. | 464 |
 pjrinaldi/wombatforensics | A multi-threaded GUI forensic analysis tool for Linux | 48 |
 dissectmalware/officeforensictools | A Python-based collection of tools for gathering forensic information from Office documents | 26 |
 evild3ad/memprocfs-analyzer | Automated tool for forensic analysis of Windows memory dumps | 555 |
 shanek2/invtero.net | Analyzes and validates physical memory from various systems to extract process information and hypervisor details | 281 |