CDQR
Forensic analyzer
A tool for analyzing forensic data from various devices and platforms
The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted drives and extracted artifacts from Windows, Linux, MacOS, and Android devices
334 stars
30 watching
50 forks
Language: Python
last commit: over 2 years ago
Linked from 1 awesome list
meirwah/awesome-incident-responseRelated projects:
| Repository | Description | Stars |
|---|---|---|
| orlikoski/cylr | A tool that collects and preserves forensic artifacts from NTFS file systems without impacting the host system. | 645 |
 vitaly-kamluk/bitscout | A customizable tool for creating bootable disk images for remote system analysis and forensic investigations. | 462 |
| orlikoski/skadi | A comprehensive collection of tools and platforms for digital forensics, threat analysis, and incident response | 491 |
 uqcyber/coldpress | Automates malware analysis workflow by extracting features and indicators of compromise from malicious files using various tools and libraries. | 16 |
 sekoialab/fastir_collector | A tool for collecting and analyzing Windows system artefacts on live systems | 506 |
 cyberdefenseinstitute/cdir | A tool designed to collect data from Windows systems during an incident response | 154 |
 ydkhatri/mac_apt | A digital forensics tool for analyzing macOS and iOS systems | 781 |
 opensourcesec/cirtkit | A comprehensive toolset for digital forensics and incident response analysis using Python | 142 |
 msuhanov/dfir_ntfs | A digital forensics tool for parsing and analyzing NTFS/FAT file systems. | 191 |
| sekoialab/fastir_collector_linux | A tool for gathering and recording information from live Linux systems for forensic analysis | 173 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 148 |
 dissectmalware/officeforensictools | A Python-based collection of tools for gathering forensic information from Office documents | 26 |
 codeyourweb/fastfinder | Tools for detecting suspicious files and directories on Windows and Linux endpoints. | 232 |
 hashlookup/hashlookup-forensic-analyser | Analyze digital evidence by searching for files against a large public hash database and generating reports on findings. | 125 |
 coinbase/dexter | A forensics acquisition framework for secure and extensible digital evidence collection and analysis. | 125 |