dfirtriage

Windows forensic tool

A digital forensic tool designed to gather and analyze data from Windows-based systems in incident response scenarios.

Digital forensic acquisition tool for Windows based incident response.

GitHub

334 stars

27 watching

50 forks

Language: Python

last commit: 7 months ago

Related projects:

Repository	Description	Stars
idiom/pftriage	Tool to analyze files during malware analysis and triage by extracting properties and detecting malicious indicators.	77
dissectmalware/officeforensictools	A Python-based collection of tools for gathering forensic information from Office documents	26
flo354/iosforensic	A tool to aid in forensic analysis of iOS devices	63
anssi-fr/dfir4vsphere	A PowerShell module for collecting logs and forensics data from VMware vSphere environments.	141
diogo-fernan/ir-rescue	A tool for comprehensively collecting host forensic data during incident response and analysis.	465
ydkhatri/mac_apt	A digital forensics tool for analyzing macOS and iOS systems	783
arxsys/dff	A framework for automating digital forensic analysis and incident response	274
jfarley248/meat	A toolkit for acquiring and analyzing evidence from iOS devices	138
pjrinaldi/wombatforensics	A multi-threaded GUI forensic analysis tool for Linux	47
msuhanov/dfir_ntfs	A digital forensics tool for parsing and analyzing NTFS/FAT file systems.	191
sekoialab/fastir_collector	A tool for collecting and analyzing Windows system artefacts on live systems	506
dfir-iris/iris-web	A collaborative incident response platform allowing technical details to be shared during investigations	1,079
opensourcesec/cirtkit	A comprehensive toolset for digital forensics and incident response analysis using Python	142
dfirtrack/dfirtrack	A web-based application for tracking and managing incident response efforts in large-scale digital forensic investigations.	482
codeyourweb/fastfinder	Tools for detecting suspicious files and directories on Windows and Linux endpoints.	232