Awesome Incident Response
A curated list of tools and resources for digital forensics and incident response (DFIR) teams.
What is Awesome Incident Response?
Awesome Incident Response is a curated GitHub repository listing tools and resources for digital forensics and incident response (DFIR). It helps security analysts and teams quickly find software for tasks like evidence collection, memory analysis, log parsing, and adversary emulation during security investigations. The project organizes hundreds of utilities into categories like All-In-One Tools, Memory Analysis Tools, and Incident Management to streamline the response process.
Security analysts, DFIR teams, CERTs, SOC operators, and cybersecurity professionals who need to investigate and respond to security incidents. It is also valuable for students and researchers learning about digital forensics and incident response methodologies.
It saves time by aggregating and categorizing a vast array of DFIR tools in one place, eliminating the need to search scattered sources. The list is community-maintained, ensuring it stays current with evolving tools and techniques in the fast-moving cybersecurity field.
Overview
A curated list of tools for incident response
Use Cases
Best For
- Finding specialized forensic tools for Windows, Linux, or macOS evidence collection
Related Projects
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
