cloud-forensics-utils
Cloud evidence collector
Tools for collecting and analyzing evidence from cloud platforms during incident response.
Python library to carry out DFIR analysis on the Cloud
467 stars
20 watching
88 forks
Language: Python
last commit: about 1 month ago
Linked from 1 awesome list
4ndersonlin/awesome-cloud-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
| google/giftstick | Automated tool for collecting and uploading forensics evidence to the cloud. | 140 |
| google/turbinia | Automates and scales digital forensic processing workflows to handle large amounts of evidence in the cloud. | 754 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 149 |
 dfir-iris/iris-web | A collaborative platform for incident responders to share technical details during investigations | 1,091 |
 hashlookup/hashlookup-forensic-analyser | Analyze digital evidence by searching for files against a large public hash database and generating reports on findings. | 126 |
 dissectmalware/officeforensictools | A Python-based collection of tools for gathering forensic information from Office documents | 26 |
 teamdfir/sift | A suite of tools and images for building and managing digital forensics environments on AWS | 494 |
 opensourcesec/cirtkit | A comprehensive toolset for digital forensics and incident response analysis using Python | 142 |
 ydkhatri/mac_apt | A digital forensics tool for analyzing macOS and iOS systems | 790 |
 googlecloudplatform/security-analytics | Provides a set of community-driven security analytics queries and rules for Google Cloud log analysis | 327 |
 idiom/pftriage | Tool to analyze files during malware analysis and triage by extracting properties and detecting malicious indicators. | 77 |
 thehive-project/thehive4py | A Python library providing an API client for TheHive digital forensics platform | 217 |
| googlecloudplatform/aactl | Utility to import and manage vulnerabilities and attestations from container images into Google Cloud's Artifact Analysis service. | 10 |
 jfarley248/meat | A toolkit for acquiring and analyzing evidence from iOS devices | 140 |
| thehive-project/cortex-analyzers | Develops and stores Cortex analyzers & responders for incident response and threat intelligence. | 437 |