Memory acquisition for Linux that makes sense.
☆220Nov 21, 2023Updated 2 years ago
Alternatives and similar repositories for dumpit-linux
Users that are interested in dumpit-linux are comparing it to the libraries listed below
Sorting:
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆341Dec 3, 2025Updated 2 months ago
- Search Index Database Reporter☆131Oct 28, 2025Updated 3 months ago
- AVML - Acquire Volatile Memory for Linux☆1,055Feb 20, 2026Updated last week
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆696Oct 22, 2025Updated 4 months ago
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆253Oct 29, 2025Updated 4 months ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆118Nov 28, 2023Updated 2 years ago
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆58Jun 24, 2025Updated 8 months ago
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,242Feb 18, 2026Updated last week
- A python script developed to process Windows memory images based on triage type.☆266Nov 25, 2023Updated 2 years ago
- Carves and recreates VSS catalog and store from Windows disk image.☆99Jan 24, 2023Updated 3 years ago
- Windows Forensics Salt States☆21Feb 19, 2026Updated last week
- Android Logs Events And Protobuf Parser☆764Feb 9, 2026Updated 2 weeks ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 8 months ago
- Contains compiled binaries of Volatility☆36May 18, 2025Updated 9 months ago
- $MFT directory tree reconstruction & FILE record info☆326Oct 7, 2024Updated last year
- USN Journal full path builder☆65Sep 16, 2024Updated last year
- Blueteam operational triage registry hunting/forensic tool.☆149Sep 2, 2025Updated 5 months ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆306May 7, 2025Updated 9 months ago
- This is to edit a training forensic image file (raw/dd) and zero out all the unnecessary files.☆11Jun 21, 2025Updated 8 months ago
- The Volatility Collaborative GUI☆265Feb 11, 2026Updated 2 weeks ago
- The multi-platform memory acquisition tool.☆946Oct 14, 2025Updated 4 months ago
- A series of python scripts to extract information from SQLite Data Files☆21Nov 15, 2025Updated 3 months ago
- iOS Logs, Events, And Plist Parser☆1,023Feb 12, 2026Updated 2 weeks ago
- OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…☆229Jan 6, 2026Updated last month
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆19Feb 26, 2024Updated 2 years ago
- Yet another fseventsd parser for macOS forensics☆12Jul 20, 2024Updated last year
- Volatility3 Linux profiles☆75Dec 8, 2025Updated 2 months ago
- Windows Forensics Environment Builder☆179Dec 5, 2025Updated 2 months ago
- ☆152Jun 5, 2024Updated last year
- An NTFS/FAT parser for digital forensics & incident response☆217Oct 31, 2025Updated 4 months ago
- convert ELF/DWARF symbol and type information into vol3's intermediate JSON☆145Oct 9, 2024Updated last year
- Parses the WMI object database....looking for persistence☆34Dec 12, 2019Updated 6 years ago
- Digital Forensic Investigative Scripts☆87Feb 6, 2026Updated 3 weeks ago
- RegRipper3.0☆684Dec 12, 2024Updated last year
- A small util to brute-force prefetch hashes☆77Jun 24, 2022Updated 3 years ago
- Volatility 3.0 development☆3,931Feb 20, 2026Updated last week
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆646Nov 7, 2025Updated 3 months ago