dfirtriage

Windows forensic tool

A digital forensic tool designed to gather and analyze data from Windows-based systems in incident response scenarios.

Digital forensic acquisition tool for Windows based incident response.

GitHub

335 stars

27 watching

50 forks

Language: Python

last commit: 9 months ago

Related projects:

Repository	Description	Stars
idiom/pftriage	Tool to analyze files during malware analysis and triage by extracting properties and detecting malicious indicators.	77
dissectmalware/officeforensictools	A Python-based collection of tools for gathering forensic information from Office documents	26
flo354/iosforensic	A tool to aid in forensic analysis of iOS devices	63
anssi-fr/dfir4vsphere	A PowerShell module for collecting logs and forensics data from VMware vSphere environments.	143
diogo-fernan/ir-rescue	A tool for comprehensively collecting host forensic data during incident response and analysis.	466
ydkhatri/mac_apt	A digital forensics tool for analyzing macOS and iOS systems	790
arxsys/dff	A framework for automating digital forensic analysis and incident response	276
jfarley248/meat	A toolkit for acquiring and analyzing evidence from iOS devices	140
pjrinaldi/wombatforensics	A multi-threaded GUI forensic analysis tool for Linux	48
msuhanov/dfir_ntfs	A digital forensics tool for parsing and analyzing NTFS/FAT file systems.	196
sekoialab/fastir_collector	A tool for collecting and analyzing Windows system artefacts on live systems	507
dfir-iris/iris-web	A collaborative platform for incident responders to share technical details during investigations	1,091
opensourcesec/cirtkit	A comprehensive toolset for digital forensics and incident response analysis using Python	142
dfirtrack/dfirtrack	A web-based application for tracking and managing incident response efforts in large-scale digital forensic investigations.	482
codeyourweb/fastfinder	Tools for detecting suspicious files and directories on Windows and Linux endpoints.	234