Here are
138 public repositories
matching this topic...
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Updated
Feb 11, 2022
Scala
A curated list of awesome forensic analysis tools and resources
Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
Updated
Feb 19, 2022
Python
Educational, CTF-styled labs for individuals interested in Memory Forensics
Updated
Mar 8, 2021
Shell
Log what files are accessed by any Linux process
Cortex: a Powerful Observable Analysis and Active Response Engine
Updated
Dec 20, 2021
Scala
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
Updated
Jan 22, 2022
PowerShell
Digital Forensics Investigation Platform
Updated
Feb 19, 2022
JavaScript
ThePhish: an automated phishing email analysis tool
Updated
Jan 19, 2022
Python
IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners.
Updated
Feb 22, 2022
Java
DFIRTrack - The Incident Response Tracking Application
Updated
Feb 15, 2022
Python
A list of free and open forensics analysis tools and other resources
Cortex Analyzers Repository
Updated
Feb 21, 2022
Python
Awesome list of digital forensic tools
Everything related to Linux Forensics
A collection of tools for forensic analysis
Updated
Sep 12, 2019
Python
Updated
Dec 28, 2020
Python
Python API Client for TheHive
Updated
Aug 11, 2021
Python
A python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local host.
Updated
Aug 26, 2020
Python
An AFF4 C++ implementation.
Cybersecurity Career Path
🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
Bash script to extract data from a "chekcra1ned" iOS device
Updated
Jun 7, 2020
Shell
Updated
Apr 21, 2017
Perl
A course on "Digital Forensics" designed and offered in the Computer Science Department at Texas Tech University
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
Collaborative, web-based case management for incident response
Updated
Jun 25, 2020
Ruby
Improve this page
Add a description, image, and links to the
digital-forensics
topic page so that developers can more easily learn about it.
Curate this topic
Add this topic to your repo
To associate your repository with the
digital-forensics
topic, visit your repo's landing page and select "manage topics."
Learn more
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session.
You signed out in another tab or window. Reload to refresh your session.
We're trying to process a series of .pcap files captured over time and hoped we could use tcpflow for both extracting the payloads and keeping track of the sessions' states at the same time using the written DFXML.
From the man page I understood that using
-Ron the next file (n) should complete TCP flows. Unfortunately it is not really clear what this exactly means and if this should have ef