acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
☆117Updated this week
Alternatives and similar repositories for acquire
Users that are interested in acquire are comparing it to the libraries listed below
Sorting:
- Recordization library☆11Updated this week
- Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…☆1,080Updated this week
- The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…☆79Updated this week
- A password list optimized for use on Android devices.☆11Jul 2, 2022Updated 3 years ago
- A web scraper to create MISP events and reports☆17Jun 30, 2025Updated 8 months ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆306May 7, 2025Updated 9 months ago
- ☆24Mar 12, 2025Updated 11 months ago
- Windows Forensics Environment Builder☆179Dec 5, 2025Updated 2 months ago
- DFIRTrack - The Incident Response Tracking Application☆532Jan 13, 2026Updated last month
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 8 months ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆35Feb 2, 2022Updated 4 years ago
- A tool for fetching DFIR and other GitHub tools.☆25Aug 2, 2025Updated 6 months ago
- This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.☆15Jul 13, 2023Updated 2 years ago
- $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility☆38Jul 18, 2024Updated last year
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 3 months ago
- DFIQ is a collection of investigative questions and the approaches for answering them☆300Jan 17, 2025Updated last year
- Penguin OS Forensic (or Flight) Recorder☆40Dec 25, 2024Updated last year
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆56Jul 2, 2023Updated 2 years ago
- Forensic framework to build tools that can be reused in multiple projects without changing anything☆31Oct 17, 2025Updated 4 months ago
- Learn about a network from a pcap file or reading from an interface☆29Apr 6, 2024Updated last year
- A lightweight C++/C AFF4 reader library☆14Feb 5, 2026Updated 3 weeks ago
- Capture. Detonate. Collect☆14Sep 20, 2024Updated last year
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Oct 24, 2022Updated 3 years ago
- ☆13Feb 7, 2020Updated 6 years ago
- Phishing can't get any easier with Tilapia☆11Jan 2, 2023Updated 3 years ago
- linux c++, fox-toolkit, multi-threaded forensic gui tool☆49Jul 19, 2024Updated last year
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- Daily archiver & triage issue creator for new releases of CISA's Known Exploited Vulnerabilities list☆39Updated this week
- Use Ghidra Structs in Python☆30Mar 28, 2021Updated 4 years ago
- A framework for orchestrating forensic collection, processing and data export☆343Feb 18, 2026Updated last week
- A cross platform forensic parser written in Rust!☆101Updated this week
- ☆20Jan 28, 2026Updated last month
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Jan 10, 2025Updated last year
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,242Feb 18, 2026Updated last week
- A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts☆78Oct 20, 2025Updated 4 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆341Dec 3, 2025Updated 2 months ago
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34May 17, 2021Updated 4 years ago
- Incident Response - Fast suspicious file finder☆249Jan 24, 2026Updated last month