computer-forensics

⭐️ A curated list of awesome forensic analysis tools and resources

❄ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It automates the collection of artifacts from a wide range of Unix...

The best tools and resources for forensic analysis.

Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.

unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and...

This will compile a list of Android, iOS, Linux malware techniques for attacking and detection purposes.

Kali Linux in Docker + Ubuntu 22.04 in Docker for Bug Bounty, Penetration Testing, Security Research, Computer Forensics and Reverse Engineering. Kali Linux inside with Docker with or without support ...

A Volatility plugin for finding sqlite database rows

An updated C# port of X-Ways X-Tensions API.

LiveDiff is a portable system-level differencing tool for Microsoft Windows-based operating systems

Extract valid or partially valid domain names and IPs from malicious or invalid URLs.

Access Expert Witness Format (ewf/E01/L01) files using Golang

Docker images of open source forensic tools

Guymager is a free forensic imager for media acquisition. It is based on libewf and libguytools.

Dump a process memory and extract data based on regular expressions.

The forensic analysis write-up / walkthrough for forensic disk image.

A python-based tool to extract forensic info from ActivitiesCache.db (Windows Activity Timeline)

CFREDS case study for subject code: CTMTCS S2 P2