Forensic Analysis
Showing 24 of 24 projects
A curated list of tools and resources for digital forensics and incident response (DFIR) teams.
A curated list of tools and resources for digital forensics and incident response (DFIR) teams.
A curated list of awesome free (mostly open source) forensic analysis tools and resources for digital investigations.
A curated list of awesome free forensic analysis tools, resources, and learning materials for digital investigators.
Distributed tcpdump for cloud native environments, capturing and streaming network packets from multiple hosts to a central receiver.
A forensic evidence collection and analysis toolkit for macOS, gathering system data to detect and investigate malware infections.
A command-line tool that detects steganographically hidden data in PNG and BMP image files.
A forensic software utility for read-only, non-destructive data acquisition and analysis from Android smartphones.
A web-based collaborative platform for incident responders to share technical details during cybersecurity investigations.
A threat hunting tool that analyzes Windows event logs to detect APT movements and suspicious activity using pre-defined rules and statistical analysis.
A digital forensics and incident response framework for unified analysis of forensic artifacts across disk formats, filesystems, and operating systems.
A curated list of tools and resources for anti-forensic activities, including data hiding, encryption, steganography, and evidence removal.
A cross-platform forensic artifact collection tool for NTFS file systems that minimizes host impact.
A WinDBG extension for viewing and analyzing Windows kernel anomalies to detect rootkits and system modifications.
An open-source platform for collecting, processing, and analyzing forensic artifacts from macOS, Windows, and Linux systems.
A tool to spy on and control TTY sessions of SSH-connected clients with built-in keylogging and session recording.
A low-level utility for dumping, writing, and analyzing data from physical NAND Flash memory or virtual image files.
Loadable kernel modules for Android reversing and debugging on controlled systems and emulators.
A Python tool for advanced analysis of Windows AppCompat/AmCache forensic artifacts, enabling threat hunting beyond basic grep techniques.
A CLI utility and Python library for parsing, filtering, and analyzing log files and other structured data.
A CLI utility and Python library for parsing, filtering, and analyzing log files and other structured data.
A unified console for digital forensics and incident response built on the Viper Framework.
A tool that uses known-plaintext attacks to decrypt XOR-encoded files by deducing the original keystream.
Replay HTTP and HTTPS requests from PCAP files using extracted TLS Master Secrets for debugging and analysis.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.