sift
Forensics setup
A suite of tools and images for building and managing digital forensics environments on AWS
SIFT
491 stars
73 watching
65 forks
last commit: 9 months ago
Linked from 1 awesome list
awscastcast-distrocliforensicsissues-onlymemory-forensicssalt-statesaltstacksanssifttimeline-analysis
cugu/awesome-forensicsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 fox-it/dissect | A digital forensics framework that provides tools and parsers to analyze forensic artefacts from various disk and file formats. | 924 |
 realitynet/android-forensics-references | A collection of references and resources for analyzing Android devices and applications. | 287 |
| realitynet/ios-forensics-references | A curated collection of references and resources for iOS forensics investigation | 204 |
 pjrinaldi/wombatforensics | A multi-threaded GUI forensic analysis tool for Linux | 47 |
 google/cloud-forensics-utils | Tools for collecting and analyzing evidence from cloud platforms during incident response. | 464 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 148 |
 msuhanov/dfir_ntfs | A digital forensics tool for parsing and analyzing NTFS/FAT file systems. | 191 |
 stuxnet999/memlabs | An educational CTF-styled lab platform for learning memory forensics and digital forensics using shell scripting and Volatility Framework | 1,659 |
 diogo-fernan/ir-rescue | A tool for comprehensively collecting host forensic data during incident response and analysis. | 465 |
 arxsys/dff | A framework for automating digital forensic analysis and incident response | 274 |
| google/turbinia | Automates and scales digital forensic processing workflows to handle large amounts of evidence in the cloud. | 750 |
 evild3ad/memprocfs-analyzer | Automated forensic analysis tool for Windows memory dumps | 540 |
 travisfoley/dfirtriage | A digital forensic tool designed to gather and analyze data from Windows-based systems in incident response scenarios. | 334 |
 dfir-iris/iris-web | A collaborative incident response platform allowing technical details to be shared during investigations | 1,079 |
 invoke-ir/powerforensics | A C#-based framework for analyzing and investigating hard drive forensic data | 1,385 |