Repository navigation

#

forensic-analysis

cugu / awesome-forensics 

⭐️ A curated list of awesome forensic analysis tools and resources

computer-forensicsdigital-forensicsforensic-analysisdfirOpen Sourcefree
4258
1 个月前
mikeroyal/Digital-Forensics-Guide
mikeroyal / Digital-Forensics-Guide 

Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

digitalforensicsdigitalforensicreadinessforensics安全forensics-toolsdigital-forensicsthreat-intelligenceintrusion-detectionmitre-attackdetection-engineeringnetwork-securityoffensive-securitycyber-securityport-scanningsiemalertingforensic-analysisforensics-investigationsOSINTdfir
Python
1859
1 年前
Srinivas11789 / PcapXray 

❄ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

forensicspcapNetworkPythoncomputer-forensicsforensic-analysisCybersecuritynetwork-diagramtortrafficpackets安全
Python
1717
3 年前
ahmedkhlief / APT-Hunter 

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

threat-huntingpurpleteamPythonwindows-eventlogapt-attacksincident-responseforensic-analysiswindows-event-logs
Python
1327
5 个月前
yampelo/beagle
yampelo / beagle 

Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.

安全digital-forensicsincident-responsegraphdfirforensic-analysisthreat-hunting
Python
1287
2 年前
mesquidar/ForensicsTools
mesquidar / ForensicsTools 

A list of free and open forensics analysis tools and other resources

forensicsdigital-forensicsforensic-analysisforensics-investigations工具freeOpen SourceAwesome Listsmetadataimage-analysistimelineNetworkWindowsmacOSLinux
1251
5 个月前
B16f00t / whapa 

WhatsApp Parser Toolset v1.59

forensic-analysiswhatsapp-parserwhatsapp-encryption
Python
1188
1 个月前
dfir-iris / iris-web 

Collaborative Incident Response platform

forensicincident-responsePythondigital-forensicsdigital-forensics-incident-responseforensic-analysis
Python
1177
4 天前
shadawck / awesome-anti-forensic 

Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything that modify attributes. This all includes tools to work with anything in general that makes changes to a system for the purposes of hiding information.

Awesome Listsanti-forensicanti-forensicsCybersecurityforensic-analysis安全antiforensics
HTML
861
1 年前
AvillaDaniel / AvillaForensics 

Avilla Forensics 3.0

移动forensicsWhatsAppTelegramsignaladbAndroidiOSapktoolforensics-toolsforensic-analysisdevicesInstagramdigital-forensicswhatsapp-parser
C#
816
8 天前
swwwolf / wdbgark 

WinDBG Anti-RootKit Extension

kernel-modeC++Malwaremalware-analysismalware-researchforensic-analysiswindbgwindbg-extensionanti-rootkitWindowsVisual Studiodrivermemory-forensicsanomaly-detectionuser-modedebugging-tool
C++
628
5 年前
m14r41 / PentestingEverything 

Penetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...

application-securityactive-directory-securityappsecdocker-securityforensic-analysisinfrastuctureiot-security-testingnetwork-securitysource-codethick-clientwifi-hacking
JavaScript
561
5 天前
ivbeg / awesome-forensicstools 

Awesome list of digital forensic tools

Awesome Listsforensicsforensic-analysisdigital-forensicsmetadatainvestigative-journalism
507
4 年前
Psmths / windows-forensic-artifacts 

Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!

forensicsartifactsdfirWindowsanalysisreferencedigital-forensicsforensic-analysisforensics-investigations
338
8 个月前
dfir-dd / dfir-toolkit 

CLI tools for forensic investigation of Windows artifacts

命令行界面dfirdigital-forensicsdigital-forensics-incident-responseforensic-analysisforensicsforensics-toolsRust
Rust
327
6 个月前
MK-Ware / Forensic-Tools 

A collection of tools for forensic analysis

forensic-analysisPythoncookieParsingmetadataforensicsexif-metadataexifWhatsAppFirefoxChromeskypeFacebookfacebook-messengerdigital-forensics
Python
281
6 年前
JohnLaTwC / PyPowerShellXray 

Python script to decode common encoded PowerShell scripts

PowerShellShelldfir安全forensicsforensic-analysisincident-response
Python
216
7 年前
Viralmaniar / Remote-Desktop-Caching- 

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

blueteamredteamHackinginternal-pentestpenetration-testingredteamingforensicsforensics-investigationsforensic-analysisinfrastructure-monitoringblue-teamhacking-toolspurpleteam
Python
215
7 年前
EC-DIGIT-CSIRC / sysdiagnose 

Forensic toolkit for iOS sysdiagnose feature

forensic-analysisincident-response-toolingPython
Python
194
3 天前
Gadzhovski / TRACE-Forensic-Toolkit 

Digital forensic analysis tool that provides a user-friendly interface for investigating disk images.

dfirdigitalforensicsforensic-analysisforensicsforensics-toolsPythonddimage-analysisrawexif-metadatawindows-registrydigital-forensics
Python
164
20 天前