dfir topics

dnslog

41

Stars

8

Forks

Watchers

Minimalistic DNS logging tool

stamparm

cert

dfir

dns

forensics

mthc

168

Stars

38

Forks

Watchers

All-in-one bundle of MISP, TheHive and Cortex

pe3zx

cortex

dfir

incident-management

incident-response

dcfldd

66

Stars

6

Forks

Watchers

dcfldd - enhanced version of dd for forensics and security

adulau

acquisition

dfir

disk-image

forensics

RecuperaBit

512

Stars

73

Forks

Watchers

A tool for forensic file system reconstruction.

Lazza

dfir

disk

forensics

ntfs

ir-rescue

452

Stars

94

Forks

Watchers

A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.

diogo-fernan

bash

batch

cybersecurity

dfir

Scripting

53

Stars

6

Forks

Watchers

PS / Bash / Python / Other scripts For FUN!

K2

bash

binary-analysis

detection

dfir

BlueCloud

122

Stars

30

Forks

Watchers

Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.

iknowjason

blue-team

cyber-range

cyberrange

dfir

PurpleCloud

483

Stars

85

Forks

Watchers

A little tool to play with Azure Identity - Azure Active Directory lab creation tool

iknowjason

azure

azure-lab

dfir

dfir-automation

PyPowerShellXray

215

Stars

42

Forks

Watchers

Python script to decode common encoded PowerShell scripts

JohnLaTwC

dfir

forensic-analysis

forensics

incident-response

awesome-forensics

3.6k

Stars

593

Forks

Watchers

A curated list of awesome forensic analysis tools and resources

cugu

computer-forensics

dfir

digital-forensics

forensic-analysis