Showing 16 of 16 projects
An open-source memory forensic framework for extracting and analyzing digital artifacts from Windows, Linux, and OSX memory images.
A PowerShell framework for live disk forensic analysis, supporting NTFS and FAT file systems.
A Windows Registry forensics tool for extracting and analyzing data from registry hives using Perl-based plugins.
Collects Windows forensic artifacts to detect early system compromises through analysis of live data.
A Windows Batch and Unix Bash script suite for comprehensive host forensic data collection during incident response.
A PowerShell module collection for agentless artifact gathering and reconnaissance on Windows endpoints.
A forensic artifact parsing tool that quickly analyzes disk images and extracted artifacts from Windows, Linux, macOS, and Android devices.
A customizable single-binary agent for collecting forensic artifacts from Windows, macOS, and Linux systems.
A PowerShell module for live incident response that enumerates Windows autorun artifacts to detect persistence mechanisms used by malware and legitimate programs.
A Python tool for offline detection of Windows persistence mechanisms in forensic collections like KAPE dumps or mounted disk images.
A Python tool for advanced analysis of Windows AppCompat/AmCache forensic artifacts, enabling threat hunting beyond basic grep techniques.
A scripting framework for standardizing and automating Windows live forensic artifact acquisition using common utilities.
A PowerShell-based live response and forensic collection tool for targeted incident response on Windows systems.
A memory forensics helper that automates initial data extraction from Windows memory images using Volatility.
A pure Python parser for classic Windows Event Log (.evt) files, enabling forensic analysis and log extraction.
A Windows incident response tool that generates comprehensive system reports without requiring admin permissions.
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.