Digital forensic analysis tool that provides a user-friendly interface for investigating disk images.
☆208Nov 12, 2025Updated 5 months ago
Alternatives and similar repositories for TRACE-Forensic-Toolkit
Users that are interested in TRACE-Forensic-Toolkit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Forensic tool for extracting and analyzing Google DriveFS cached files and metadata.☆20May 9, 2025Updated last year
- Automatic, fast parsing of browser artifacts☆17Jan 4, 2025Updated last year
- Parses USB connection artifacts from offline Registry hives☆107Feb 8, 2026Updated 3 months ago
- Extract files from Apple devices on Windows, Linux and MacOS. Mostly a wrapper for pymobiledevice3. Creates iTunes-style backups and "adv…☆466Apr 24, 2026Updated 2 weeks ago
- USN Journal full path builder☆69Apr 16, 2026Updated 3 weeks ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- macOS forensic acquisition made simple☆254Apr 9, 2026Updated last month
- Windows Forensics Salt States☆22Updated this week
- A tool for fetching DFIR and other GitHub tools.☆27Aug 2, 2025Updated 9 months ago
- Script to process PDF files☆21May 23, 2025Updated 11 months ago
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 6 months ago
- This is to edit a training forensic image file (raw/dd) and zero out all the unnecessary files.☆11Jun 21, 2025Updated 10 months ago
- A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts☆80Oct 20, 2025Updated 6 months ago
- Windows Forensics Environment Builder☆185Apr 7, 2026Updated last month
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆43Jul 18, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Quick ESXi Log Parser☆31Oct 20, 2025Updated 6 months ago
- Python web app for previewing data in a Chrome Profile Folder☆26Jul 1, 2024Updated last year
- A script to convert a Cellebrite UFDR to the original file structure.☆78Mar 21, 2022Updated 4 years ago
- CLI tools for forensic investigation of Windows artifacts☆352Jul 21, 2025Updated 9 months ago
- mister-skinnylegs is an open plugin framework for parsing website/webapp artifacts in browser data. It currently provides a command line …☆20Nov 14, 2025Updated 5 months ago
- Penguin OS Forensic (or Flight) Recorder☆41Mar 27, 2026Updated last month
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆709May 2, 2026Updated last week
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆18Apr 30, 2025Updated last year
- Windows Forensic Environment (WinFE) - based on WinPE☆42Mar 16, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.☆108Mar 12, 2026Updated last month
- Automatically create iSCSI targets for all drives except for a boot device☆26May 23, 2025Updated 11 months ago
- Python script for carving Bitlocker VMK keys☆26Feb 4, 2026Updated 3 months ago
- A cross platform forensic parser written in Rust!☆107Updated this week
- A collaboration effort by the DFIR community to provide definitions (sometimes multiple) for common forensic terms!☆26Dec 1, 2022Updated 3 years ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆89Feb 9, 2025Updated last year
- A utility to process the iOS Cache.sqlite database and create a timelined KML map for use in Google Earth☆28Dec 3, 2024Updated last year
- ☆36Feb 24, 2026Updated 2 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Portable Windows forensic tool for reviewing Firefox-like and Chromium-based browser artifacts, with labeling, search, CLI processing, an…☆56Apr 30, 2026Updated last week
- $MFT directory tree reconstruction & FILE record info☆329Oct 7, 2024Updated last year
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆340Dec 3, 2025Updated 5 months ago
- Windows anti-forensics module☆25Apr 20, 2026Updated 2 weeks ago
- Forensic Imaging quickstarts!☆13Aug 12, 2022Updated 3 years ago
- /ˈhäjˌpäj/ "a confused mixture."☆15Apr 30, 2026Updated last week
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆111Feb 6, 2026Updated 3 months ago