Digital Forensics
Showing 30 of 30 projects
A curated list of awesome malware analysis tools, resources, and related information for security professionals.
An advanced offline password cracker supporting hundreds of hash and cipher types across multiple platforms.
A live malware repository providing encrypted samples and source code for educational malware analysis and research.
A forensic toolkit for gathering and analyzing traces on Android and iOS devices to identify potential spyware compromise.
A cross-platform file type identification tool for malware analysts and reverse engineers, using signature-based and heuristic analysis.
A curated list of tools and resources for digital forensics and incident response (DFIR) teams.
A curated list of tools and resources for digital forensics and incident response (DFIR) teams.
An incident response framework for remote live forensics with Python client-server architecture.
A curated list of awesome free (mostly open source) forensic analysis tools and resources for digital investigations.
A curated list of awesome free forensic analysis tools, resources, and learning materials for digital investigators.
A comprehensive collection of Yara rules for malware detection, vulnerability identification, and security analysis.
A curated list of awesome YARA rules, tools, and resources for malware researchers and security professionals.
A memory forensics framework for extracting digital artifacts from volatile memory (RAM) samples across Windows, Linux, and macOS.
An endpoint visibility and collection tool using the Velociraptor Query Language (VQL) for host-based state information gathering.
A fast, standalone tool for rapid threat hunting and forensic analysis of Windows event logs and other forensic artefacts.
An open-source tool for collaborative forensic timeline analysis, enabling teams to organize, annotate, and investigate timelines together.
A free Mac OS X computer forensics tool that parses system artifacts, extracts user data, and verifies file reputation.
A Sigma-based threat hunting and fast forensics timeline generator for Windows event logs, written in Rust.
An open-source forensic toolkit for analyzing disk images and file systems to identify and recover digital evidence.
A curated list of free, hands-on educational resources for learning cybersecurity through practical exercises and CTF challenges.
A collection of 200 Windows EVTX event log samples mapped to MITRE ATT&CK techniques for detection testing and threat hunting.
A Python-based engine for automatic creation of super timelines from computer system logs and files for digital forensic analysis.
An open-source memory forensic framework for extracting and analyzing digital artifacts from Windows, Linux, and OSX memory images.
A Loadable Kernel Module (LKM) for acquiring volatile memory from Linux and Android devices, supporting local disk or network output.
A forensics intelligence platform that bridges CTI and DFIR by storing threat intelligence and enabling bulk observable searches and threat-focused analysis.
A forensic evidence collection and analysis toolkit for macOS, gathering system data to investigate potential infections.
A forensic evidence collection and analysis toolkit for macOS, gathering system data to detect and investigate malware infections.
A Python tool that generates YARA rules for malware detection by filtering out strings and opcodes that appear in goodware.
A TCP/IP packet demultiplexer that captures and reconstructs TCP connections into separate files for protocol analysis and forensics.
A forensic software utility for read-only, non-destructive data acquisition and analysis from Android smartphones.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.