sleuthkit
Forensic analysis toolkit
A collection of command line tools for analyzing digital evidence from various file systems and disk images.
The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
3k stars
183 watching
613 forks
Language: C++
last commit: over 1 year ago
Linked from 3 awesome lists
forensicsincident-responsentfssleuthkittct
carpedm20/awesome-hacking
cugu/awesome-forensics
shadawck/awesome-anti-forensicRelated projects:
| Repository | Description | Stars |
|---|---|---|
| sleuthkit/autopsy | A digital forensics platform providing a graphical interface to analyze and investigate computer data | 2,462 |
| sleuthkit/scalpel | A tool that extracts and analyzes file fragments from disk images using pattern matching algorithms. | 628 |
 orlikoski/skadi | A comprehensive collection of tools and platforms for digital forensics, threat analysis, and incident response | 492 |
 vitaly-kamluk/bitscout | A customizable tool for creating bootable disk images for remote system analysis and forensic investigations. | 464 |
 guidobartoli/sherloq | An integrated environment for digital image forensics and analysis | 2,681 |
 dissectmalware/officeforensictools | A Python-based collection of tools for gathering forensic information from Office documents | 26 |
 ebay/tsv-utils | Command line tools for manipulating large tabular data files | 1,433 |
 autistic-symposium/sec-pentesting-toolkit | A comprehensive collection of security tools and resources for pentesting and cybersecurity research | 166 |
 tobysalusky/cont3xt | Centralizes and simplifies the gathering of contextual intelligence in support of technical investigations. | 36 |
 hashlookup/hashlookup-forensic-analyser | Analyze digital evidence by searching for files against a large public hash database and generating reports on findings. | 126 |
 op7ic/unix_collector | A script designed to automatically collect various system artifacts and data from Unix-like systems without the need for manual intervention or external dependencies. | 33 |
 withsecurelabs/chainsaw | A tool to rapidly search and analyze Windows forensic artefacts like Event Logs and MFT files. | 2,919 |
 cryps1s/darksurgeon | A tool designed to empower incident response and digital forensics by providing a preconfigured Windows environment with necessary tools and scripts. | 464 |
 sdrapkin/securitydriven.inferno | A .NET cryptography library providing a secure and reliable implementation of encryption algorithms | 582 |
 swisskyrepo/payloadsallthethings | A comprehensive collection of tools and techniques for web application security testing and exploitation | 61,904 |