Tools to assist in forensicating docker
☆86Mar 5, 2025Updated last year
Alternatives and similar repositories for docker-forensics
Users that are interested in docker-forensics are comparing it to the libraries listed below
Sorting:
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.☆10Apr 3, 2022Updated 3 years ago
- SysScout is a fully encapsulated script that quickly and easily pulls local machine information from Linux-Based systems. A simple, easy…☆13Oct 20, 2017Updated 8 years ago
- 1-Click push forensics evidence to the cloud☆144Updated this week
- parser for Google search strings☆40Sep 14, 2019Updated 6 years ago
- Various scrips☆12Oct 19, 2022Updated 3 years ago
- Python script to parse the NTFS USN Journal☆116Jul 15, 2022Updated 3 years ago
- Web based analysis platform for use with the AWS_IR command line tool.☆17Aug 4, 2016Updated 9 years ago
- An updated C# port of X-Ways X-Tensions API.☆11Mar 12, 2018Updated 8 years ago
- Library of python scripts to apply Data Science in several forensics artifacts☆31Jul 16, 2020Updated 5 years ago
- Scripts and Modules for forensical analyses of mysql database systems☆22Sep 19, 2014Updated 11 years ago
- Windows event log anomaly detection powered by ATPA technologies☆26Dec 22, 2022Updated 3 years ago
- Different tools, koen.vanimpe@cudeso.be☆137Jul 21, 2025Updated 7 months ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Mar 3, 2019Updated 7 years ago
- A sort of a toolkit to decrypt Dropbox Windows DBX files☆32Apr 30, 2017Updated 8 years ago
- Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.☆69Aug 7, 2020Updated 5 years ago
- macOS (& ios) Artifact Parsing Tool☆1,015Mar 8, 2026Updated last week
- Parse IE, FireFox, Chrome and Safari Cookies for Google Analytic values☆23Sep 3, 2016Updated 9 years ago
- Tools from WFA 4/e, timeline tools, etc.☆145Feb 29, 2024Updated 2 years ago
- Parse Manifest.mbdb files from iTunes backup directories☆20Jun 29, 2017Updated 8 years ago
- Emulates the Sysinternals Autoruns tool, but for DFIR purposes e.g. multi user processing☆55May 18, 2019Updated 6 years ago
- Library of functions to apply Data Science in several forensics artifacts☆41Aug 19, 2024Updated last year
- Parses for Google Analytic values in raw files like RAM, DD images etc.☆18Apr 17, 2016Updated 9 years ago
- MantaRay Automated Computer Forensic Triage Tool☆65Feb 19, 2019Updated 7 years ago
- Script for automating Linux memory capture and analysis☆274Feb 1, 2020Updated 6 years ago
- Using osquery for Mass Incident Detection & Response☆19Jun 25, 2016Updated 9 years ago
- ☆11Mar 12, 2021Updated 5 years ago
- Windows link file (shortcuts) examiner☆68Jun 9, 2024Updated last year
- Let's obscure some IPv4 addresses☆39Updated this week
- ☆53May 21, 2018Updated 7 years ago
- Technical add-on to ingest json formatted volatility memory analysis plugin outputs☆13May 21, 2018Updated 7 years ago
- Collection of forensics artifacts location for Mac OS X and iOS☆343Nov 11, 2021Updated 4 years ago
- Assorted classes and methods for indexing reports and retrieving information from an elastic index☆21Jul 5, 2016Updated 9 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Sep 17, 2019Updated 6 years ago
- ☆93Jul 30, 2025Updated 7 months ago
- [DEPRECATED] A quickstart demo for Kolide tools☆52May 29, 2018Updated 7 years ago
- A Python package and command line utility for scanning emails with YARA rules☆21Jan 23, 2026Updated last month
- Create a MS Word index file from PowerPoint notes and slides☆46Sep 6, 2025Updated 6 months ago