CIRTKit
DFIR toolkit
A comprehensive toolset for digital forensics and incident response analysis using Python
Tools for the Computer Incident Response Team 
142 stars
20 watching
25 forks
Language: Python
last commit: over 8 years ago
Linked from 2 awesome lists
carbonblackdfirmalware-analysispython
meirwah/awesome-incident-response
fabacab/awesome-cybersecurity-blueteamRelated projects:
| Repository | Description | Stars |
|---|---|---|
 dfir-iris/iris-web | A collaborative platform for incident responders to share technical details during investigations | 1,091 |
 dfirtrack/dfirtrack | A web-based application for tracking and managing incident response efforts in large-scale digital forensic investigations. | 482 |
 dissectmalware/officeforensictools | A Python-based collection of tools for gathering forensic information from Office documents | 26 |
 cyberdefenseinstitute/cdir | A tool designed to collect data from Windows systems during an incident response | 154 |
 fox-it/dissect | A digital forensics framework that provides tools and parsers to analyze forensic artefacts from various disk and file formats. | 939 |
 codeyourweb/fastfinder | Tools for detecting suspicious files and directories on Windows and Linux endpoints. | 234 |
 google/cloud-forensics-utils | Tools for collecting and analyzing evidence from cloud platforms during incident response. | 467 |
 orlikoski/skadi | A comprehensive collection of tools and platforms for digital forensics, threat analysis, and incident response | 492 |
 travisfoley/dfirtriage | A digital forensic tool designed to gather and analyze data from Windows-based systems in incident response scenarios. | 335 |
 idiom/pftriage | Tool to analyze files during malware analysis and triage by extracting properties and detecting malicious indicators. | 77 |
 jimtin/ircoreforensicframework | Automates incident response actions to gather and process forensic artefacts from remote systems | 22 |
 open-source-dfir/slack | A community and discussion forum for digital forensics investigators and enthusiasts. | 28 |
 i3visio/osrframework | A set of libraries and tools for performing online research using natural language processing and data extraction techniques | 937 |
| orlikoski/cdqr | A tool for analyzing forensic data from various devices and platforms | 334 |
 dfirkuiper/kuiper | An investigation platform for parsing and analyzing digital evidence, streamlining workflows and improving collaboration. | 777 |