Incident Response Forensic Framework
updated at April 27, 2024, 8:49 a.m.
Remote Memory Acquisition Tool
updated at April 27, 2024, 8:50 a.m.
(DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.
updated at April 27, 2024, 8:50 a.m.
OS X Auditor is a free Mac OS X computer forensics tool
updated at April 27, 2024, 4:08 p.m.
Memory acquisition for Linux that makes sense.
updated at May 7, 2024, 9:13 a.m.
A Python library to interface with a cuckoo-modified instance
updated at May 7, 2024, 12:53 p.m.
CLI utility and Python module for analyzing log files and other data.
updated at May 7, 2024, 8:16 p.m.
Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
updated at May 10, 2024, 9:09 a.m.
A powerful and user-friendly browser extension that streamlines investigations for security professionals.
updated at May 10, 2024, 10:48 a.m.
WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)
updated at May 11, 2024, 9:15 p.m.
A machine learning tool that ranks strings based on their relevance for malware analysis.
updated at May 13, 2024, 6:36 a.m.
DPS' Lightweight Investigation Notebook
updated at May 13, 2024, 1:35 p.m.
A modular Python application to pull intelligence about malicious files
updated at May 14, 2024, 12:11 p.m.
CLI program for automating the setup, configuration, and use of cybersecurity solutions
updated at May 14, 2024, 9:23 p.m.