Trending repositories for topic forensics

Hunt down social media accounts by username across social networks

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

UNIX-like reverse engineering framework and command-line toolset

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. ...

Volatility 3.0 development

Process-aware, eBPF-based tcpdump

Official Black Hat Arsenal Security Tools Repository

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.

Rapidly Search and Hunt through Windows Forensic Artefacts

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and cluste...

Free hands-on digital forensics labs for students and faculty

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investiga...

A list of free and open forensics analysis tools and other resources

A suite of Tools to aid Incidence Response and Live Forensics for - Windows (Powershell) | Linux (Bash) | MacOS (Shell)

TCP/IP packet demultiplexer. Download from:

Solutions (that we managed to find) for the 2021 PicoCTF

Parses $MFT from NTFS file systems

Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber P...

This Python application is an OSINT (Open Source Intelligence) tool called "Ominis OSINT - Web Hunter." It performs online information gathering by querying Google for search results related to a user...

Process-aware, eBPF-based tcpdump

Solutions (that we managed to find) for the 2021 PicoCTF

Parses $MFT from NTFS file systems

Volatility 3.0 development

A suite of Tools to aid Incidence Response and Live Forensics for - Windows (Powershell) | Linux (Bash) | MacOS (Shell)

Free hands-on digital forensics labs for students and faculty

Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber P...

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

This Python application is an OSINT (Open Source Intelligence) tool called "Ominis OSINT - Web Hunter." It performs online information gathering by querying Google for search results related to a user...

A curated list of awesome Memory Forensics for DFIR

A list of free and open forensics analysis tools and other resources

Rapidly Search and Hunt through Windows Forensic Artefacts

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investiga...

Official Black Hat Arsenal Security Tools Repository

Hunt down social media accounts by username across social networks

UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD an...

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. ...

TCP/IP packet demultiplexer. Download from:

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

UNIX-like reverse engineering framework and command-line toolset

Hunt down social media accounts by username across social networks

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

UNIX-like reverse engineering framework and command-line toolset

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. ...

Volatility 3.0 development

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Process-aware, eBPF-based tcpdump

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and cluste...

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.

Official Black Hat Arsenal Security Tools Repository

Rapidly Search and Hunt through Windows Forensic Artefacts

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investiga...

Free hands-on digital forensics labs for students and faculty

A list of free and open forensics analysis tools and other resources

Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

Educational, CTF-styled labs for individuals interested in Memory Forensics

TCP/IP packet demultiplexer. Download from:

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

List of tools and commands that may be helpful in CTFs

This repository contains a list of the most popular and widely used tools in web3 security. If you find any tools missing, you can create a pull request and be a contribute the project.

List of tools and commands that may be helpful in CTFs

Volatility3 Linux profiles

Coeus 🌐 is an OSINT ToolBox empowering users with tools for effective intelligence gathering from open sources. From social media monitoring 📱 to data analysis 📊, it offers a centralized platform f...

My WriteUps for HackTheBox CTFs, Machines, and Sherlocks.

This is a repository dedicated to the DFIR journey. Contains notes, reflections and links to tools.

Process-aware, eBPF-based tcpdump

A tool for generating detailed, locally-processed reports from iOS backups, supporting encrypted and unencrypted data.

A collection of cyber security books

Ingestors extract the contents of mixed unstructured documents into structured (followthemoney) data.

Dumps all of the Key/Value pairs from a LevelDB database

TRACE is a digital forensic analysis tool that provides a user-friendly interface for investigating disk images.

FIT is a Python3 application for forensic acquisition of contents like web pages, emails, social media, etc. directly from the internet.

a list of 350+ Free TryHackMe rooms to start learning cybersecurity with THM

This repository contains a list of the most popular and widely used tools in web3 security. If you find any tools missing, you can create a pull request and be a contribute the project.

Parses $MFT from NTFS file systems

Windows Forensics Environment Builder

Awesome collection of resources 😎 Work in progress🔥

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Volatility 3.0 development

This Python application is an OSINT (Open Source Intelligence) tool called "Ominis OSINT - Web Hunter." It performs online information gathering by querying Google for search results related to a user...

A tool for generating detailed, locally-processed reports from iOS backups, supporting encrypted and unencrypted data.

Hunt down social media accounts by username across social networks

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

UNIX-like reverse engineering framework and command-line toolset

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. ...

Rapidly Search and Hunt through Windows Forensic Artefacts

Volatility 3.0 development

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and cluste...

Process-aware, eBPF-based tcpdump

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

a list of 350+ Free TryHackMe rooms to start learning cybersecurity with THM

UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD an...

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

A tool for generating detailed, locally-processed reports from iOS backups, supporting encrypted and unencrypted data.

Official Black Hat Arsenal Security Tools Repository

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Free Security and Hacking eBooks

Free hands-on digital forensics labs for students and faculty

A list of free and open forensics analysis tools and other resources

Avilla Forensics 3.0

A tool for generating detailed, locally-processed reports from iOS backups, supporting encrypted and unencrypted data.

This is a repository dedicated to the DFIR journey. Contains notes, reflections and links to tools.

List of tools and commands that may be helpful in CTFs

Coeus 🌐 is an OSINT ToolBox empowering users with tools for effective intelligence gathering from open sources. From social media monitoring 📱 to data analysis 📊, it offers a centralized platform f...

picoCTF 2024 Writeup (Capture the Flag Competition) with the solutions for the challenges.

A collection of cyber security books

Process-aware, eBPF-based tcpdump

TRACE is a digital forensic analysis tool that provides a user-friendly interface for investigating disk images.

一套misc图片隐写练习题以及配套的所有工具

FileTrove indexes files and creates metadata from them.

Volatility3 Linux profiles

This Python application is an OSINT (Open Source Intelligence) tool called "Ominis OSINT - Web Hunter." It performs online information gathering by querying Google for search results related to a user...

a list of 350+ Free TryHackMe rooms to start learning cybersecurity with THM

Jailbreak detection was changed through the years. This is a history overview and analysis of modern applications like Snapchat and Pokemon GO.

电子数据取证Wiki

Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!

PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.

ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.

Graphical interface for the forensic logical acquisition of Mac computers

FIT is a Python3 application for forensic acquisition of contents like web pages, emails, social media, etc. directly from the internet.

Process-aware, eBPF-based tcpdump

Collection of forensic tools

An OSINT / digital forensics tool built in Python

Wipe files and drives securely with random ASCII dicks

Coeus 🌐 is an OSINT ToolBox empowering users with tools for effective intelligence gathering from open sources. From social media monitoring 📱 to data analysis 📊, it offers a centralized platform f...

Web based binary analysis

Graphical interface for the forensic logical acquisition of Mac computers

ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.

A tool for generating detailed, locally-processed reports from iOS backups, supporting encrypted and unencrypted data.

picoCTF 2024 Writeup (Capture the Flag Competition) with the solutions for the challenges.

Hunt down social media accounts by username across social networks

Forensic tool to read all installed packages from a mounted Arch Linux drive and compare the filesystem to a trusted source

log Forenix 🕵️- Your Linux Forensic Artifacts Collector Tool! 🚀

Hunt down social media accounts by username across social networks

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. ...

UNIX-like reverse engineering framework and command-line toolset

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.

Expose USB activity on the fly

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and cluste...

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

Volatility 3.0 development

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Free hands-on digital forensics labs for students and faculty

Rapidly Search and Hunt through Windows Forensic Artefacts

Process-aware, eBPF-based tcpdump

Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

Collection of forensic tools

Awesome hacking is an awesome collection of hacking tools.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

A list of free and open forensics analysis tools and other resources

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investiga...

Free Security and Hacking eBooks

A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you come from where did you go) in Security Incidents and Threat Hunts

This Python application is an OSINT (Open Source Intelligence) tool called "Ominis OSINT - Web Hunter." It performs online information gathering by querying Google for search results related to a user...

A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.

List of tools and commands that may be helpful in CTFs

Single file php webshell scanner to detect potentially malicious backdoor based on token and hash with web interface and VirusTotal integration. Subscribe to get API Key

PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.

ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.

Expose USB activity on the fly

This is a repository dedicated to the DFIR journey. Contains notes, reflections and links to tools.

Collection of forensic tools

Advanced professional graphical osint toolset with The Hive Remastered

Powershell script to help Speed ​​up Threat hunting incident response processes

Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!

A tool for generating detailed, locally-processed reports from iOS backups, supporting encrypted and unencrypted data.

Graphical interface for the forensic logical acquisition of Mac computers

My WriteUps for HackTheBox CTFs, Machines, and Sherlocks.

A collection of cyber security books

a list of 350+ Free TryHackMe rooms to start learning cybersecurity with THM

Web based binary analysis

Volatility3 Linux profiles