Forensic Tools
Showing 14 of 14 projects
A memory forensics framework for extracting digital artifacts from volatile memory (RAM) samples across Windows, Linux, and macOS.
A reverse engineering framework and command-line toolset for binary analysis, disassembly, debugging, and forensic tasks.
A web-based collaborative platform for incident responders to share technical details during cybersecurity investigations.
Free Windows executable and binary data detector that identifies packers, compilers, protectors, and file formats.
A cross-platform toolset for computing and auditing file hashes with multiple algorithms including MD5, SHA-1, SHA-256, Tiger, and Whirlpool.
Enumerates persistently installed software on macOS, similar to AutoRuns for Windows.
A Windows Registry forensics tool for extracting and analyzing data from registry hives using Perl-based plugins.
A tool for auditing and visualizing control paths in Active Directory to identify privilege escalation and resource access risks.
A PowerShell suite for remote Windows incident response and hunting using CIM/WMI, requiring no agent deployment.
A cross-platform hex editor for viewing and editing large files with disk device support.
A Python RESTful API framework for querying multiple online malware analysis and threat intelligence services.
A framework for orchestrating forensic collection, processing, and data export through modular recipes.
A Python tool that finds and extracts files from packet capture (pcap) files for forensic analysis.
A command-line tool for parsing, searching, and analyzing Windows Registry hives with batch processing and forensic capabilities.
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.