acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
☆118Mar 10, 2026Updated last week
Alternatives and similar repositories for acquire
Users that are interested in acquire are comparing it to the libraries listed below
Sorting:
- Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…☆1,094Feb 25, 2026Updated 3 weeks ago
- Recordization library☆11Mar 11, 2026Updated last week
- The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…☆84Updated this week
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆306May 7, 2025Updated 10 months ago
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 4 months ago
- A password list optimized for use on Android devices.☆11Jul 2, 2022Updated 3 years ago
- Windows Forensics Environment Builder☆180Dec 5, 2025Updated 3 months ago
- Capture. Detonate. Collect☆14Sep 20, 2024Updated last year
- ☆24Mar 12, 2025Updated last year
- Forensic framework to build tools that can be reused in multiple projects without changing anything☆31Updated this week
- A web scraper to create MISP events and reports☆17Jun 30, 2025Updated 8 months ago
- $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility☆38Jul 18, 2024Updated last year
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,255Mar 14, 2026Updated last week
- DFIRTrack - The Incident Response Tracking Application☆534Jan 13, 2026Updated 2 months ago
- linux c++, fox-toolkit, multi-threaded forensic gui tool☆48Jul 19, 2024Updated last year
- Learn about a network from a pcap file or reading from an interface☆29Apr 6, 2024Updated last year
- This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.☆15Jul 13, 2023Updated 2 years ago
- Phishing can't get any easier with Tilapia☆11Jan 2, 2023Updated 3 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- DFIQ is a collection of investigative questions and the approaches for answering them☆301Mar 10, 2026Updated last week
- A YARA & Malware Analysis Toolkit written in Rust.☆103Updated this week
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆36Feb 2, 2022Updated 4 years ago
- A Dissect module implementing a parser for C-like structures.☆56Mar 10, 2026Updated last week
- A framework for orchestrating forensic collection, processing and data export☆345Updated this week
- Forensics Wiki, a wiki devoted to information about digital forensics (also known as computer forensics)☆320Jan 10, 2026Updated 2 months ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆56Jul 2, 2023Updated 2 years ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 9 months ago
- AVML - Acquire Volatile Memory for Linux☆1,064Updated this week
- A lightweight C++/C AFF4 reader library☆14Feb 5, 2026Updated last month
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆340Dec 3, 2025Updated 3 months ago
- A data module for importing UFDR report files☆13Oct 12, 2020Updated 5 years ago
- AssemblyLine 4: File triage and malware analysis☆453Updated this week
- Various short scripts and tools used for Digital Forensics☆14Apr 13, 2025Updated 11 months ago
- Penguin OS Forensic (or Flight) Recorder☆40Mar 13, 2026Updated last week
- A tool for fetching DFIR and other GitHub tools.☆26Aug 2, 2025Updated 7 months ago
- Full Deobfuscator for PEUnion 4.0.0 (.NET & PE32)☆23Apr 21, 2022Updated 3 years ago
- A cross platform forensic parser written in Rust!☆102Updated this week
- ☆33Nov 21, 2024Updated last year
- A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts☆79Oct 20, 2025Updated 5 months ago