IRTriage
System scraper
Automated incident response tool for collecting critical system information during forensic analysis of Windows systems.
Incident Response Triage - Windows Evidence Collection for Forensic Analysis
130 stars
17 watching
23 forks
Language: AutoIt
last commit: almost 9 years ago
Linked from 1 awesome list
meirwah/awesome-incident-responseRelated projects:
| Repository | Description | Stars |
|---|---|---|
 jimtin/ircoreforensicframework | Automates incident response actions to gather and process forensic artefacts from remote systems | 22 |
 crowdstrike/automactc | Automated collection and analysis tool for macOS forensic artifacts | 534 |
 tclahr/uac | Automates incident response data collection from various operating systems | 824 |
 tap-ir/tapir | An incident response framework with multi-user support, providing plugins for file analysis and a REST API for data access | 45 |
 rastrea2r/rastrea2r | A tool for incident responders and security analysts to triage suspect systems, hunt for IOCs, and collect forensic evidence. | 236 |
 withsecurelabs/linuxcatscale | Automates incident response collection and processing on Linux hosts. | 274 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 149 |
 ajwdewit/agera5tools | Tools for managing and manipulating AgERA5 data, including mirroring, exporting, extracting, and serving. | 13 |
 vespperhq/vespper | An AI-powered on-call engineer tool that automatically investigates incidents and provides contextual insights | 305 |
 sekoialab/fastir_collector | A tool for collecting and analyzing Windows system artefacts on live systems | 507 |
 cyberdefenseinstitute/cdir | A tool designed to collect data from Windows systems during an incident response | 154 |
 atc-project/atc-react | A knowledge base of actionable Incident Response techniques | 615 |
 travisfoley/dfirtriage | A digital forensic tool designed to gather and analyze data from Windows-based systems in incident response scenarios. | 335 |
 certsocietegenerale/irm | Operational guidelines and best practices for handling various types of security incidents | 982 |
 mitre/advmlthreatmatrix | A framework to help security analysts understand and prepare for adversarial machine learning attacks on AI systems | 1,056 |