artifacts-kb
Artifact descriptions
A documentation project providing descriptions of digital forensic artifacts.
Digital Forensics Artifacts Knowledge Base
75 stars
7 watching
16 forks
Language: Python
last commit: 6 months ago
Linked from 1 awesome list
meirwah/awesome-incident-responseRelated projects:
| Repository | Description | Stars |
|---|---|---|
| forensicartifacts/artifacts | A repository of machine-readable digital forensic artifacts in YAML format, validated by Python code. | 1,062 |
 forensicanalysis/artifactcollector | A tool to extract forensic artifacts from various operating systems | 270 |
 ownsecurity/fastir_artifacts | A tool for collecting forensic artifacts from live hosts across multiple operating systems. | 160 |
 ydkhatri/macforensics | A collection of scripts to analyze and process macOS forensic artifacts. | 179 |
 dissectmalware/officeforensictools | A Python-based collection of tools for gathering forensic information from Office documents | 26 |
 pstirparo/mac4n6 | A centralized collection of forensics artifacts locations for Mac OS X and iOS. | 326 |
 fox-it/acquire | A tool to quickly gather forensic artifacts from disk images or live systems into a lightweight container. | 91 |
 forensicxlab/volatility3_plugins | A collection of plugins for analyzing digital forensic data from various sources | 22 |
 google/turbinia | Automates and scales digital forensic processing workflows to handle large amounts of evidence in the cloud. | 750 |
 actions/download-artifact | A GitHub Actions action for downloading artifacts from workflow runs or repositories | 1,435 |
| ydkhatri/mac_apt | A digital forensics tool for analyzing macOS and iOS systems | 781 |
 teamdfir/sift | A suite of tools and images for building and managing digital forensics environments on AWS | 491 |
 pjrinaldi/wombatforensics | A multi-threaded GUI forensic analysis tool for Linux | 47 |
 omenscan/achoir | A scripting framework to simplify the process of gathering forensic artifacts from Windows devices. | 183 |
 accenture/docker-plaso | A Docker container for analyzing digital evidence using the Plaso supertimlining tool | 1 |