op7ic/Cloud-Investigate

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/op7ic/Cloud-Investigate)

op7ic / Cloud-Investigate

A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.

☆39

Alternatives and similar repositories for Cloud-Investigate

Users that are interested in Cloud-Investigate are comparing it to the libraries listed below

Sorting:

dfir-scripts / EverReady-Disk-Mount
View on GitHub
Disk Image Mounting Script
☆11Jan 22, 2026Updated last month
00010111 / gMetaDataParse
View on GitHub
☆24Mar 12, 2025Updated 11 months ago
JamesHabben / 4n6-app-finder
View on GitHub
Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.
☆19Apr 30, 2025Updated 10 months ago
dwmetz / Axiom-PowerShell
View on GitHub
PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
☆12Aug 26, 2024Updated last year
stuxnet999 / FileSigExtractor
View on GitHub
FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…
☆10Jul 15, 2023Updated 2 years ago
dwmetz / PSHero
View on GitHub
PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
☆37Jul 11, 2023Updated 2 years ago
WesSec / VelociDeploy-o-Matic
View on GitHub
Scripts to for ready-to-use Velociraptor instance deployment in Azure
☆14Jun 27, 2023Updated 2 years ago
sandmaxprime / VagrantMalwareWin10VM
View on GitHub
Vagrant Files to create a Virtualbox VM for Malware Analysis
☆13Jun 1, 2021Updated 4 years ago
manta0101 / Incident-Recorder
View on GitHub
Rolling Timeline for Incident Recorder.
☆14Dec 4, 2023Updated 2 years ago
blueteam0ps / memOptix
View on GitHub
A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
☆97May 28, 2023Updated 2 years ago
jgasmussen / Case_Notes.py
View on GitHub
Case_Notes.py is a cross-platform (Windows, macOS, & Linux) python script to help make the documentation process easier.
☆26Jun 24, 2023Updated 2 years ago
petebryan / blue_team_con
View on GitHub
☆17Aug 27, 2022Updated 3 years ago
Broctets-and-Bytes / Darwin
View on GitHub
Scripts for MacOS related tasks.
☆18Feb 16, 2020Updated 6 years ago
nyxgeek / nyxgeek-wordlists
View on GitHub
wordlists for password cracking
☆29Aug 15, 2022Updated 3 years ago
dlcowen / sansfor509
View on GitHub
Public script from SANS FOR509 Enterprise Cloud Incident Response
☆222Oct 26, 2025Updated 4 months ago
kacos2000 / Win10LiveInfo
View on GitHub
Windows 10 Live Information viewer
☆38Jan 27, 2022Updated 4 years ago
net-protect / google-fs-recover
View on GitHub
Google Filestream Forensic Tool
☆22Mar 10, 2022Updated 3 years ago
volatilityfoundation / community3
View on GitHub
Volatility3 plugins developed and maintained by the community
☆63Mar 19, 2023Updated 2 years ago
jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
View on GitHub
Linux Baseline and Forensic Triage Tool - BETA
☆57Sep 8, 2022Updated 3 years ago
kev365 / ToolFetcher
View on GitHub
A tool for fetching DFIR and other GitHub tools.
☆25Aug 2, 2025Updated 7 months ago
forensicxlab / volatility3_plugins
View on GitHub
☆25Jul 23, 2024Updated last year
kacos2000 / Prefetch-Browser
View on GitHub
Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
☆64Dec 18, 2024Updated last year
nisargsuthar / Veritas
View on GitHub
A hex viewer for the sleuths!
☆20Nov 7, 2025Updated 4 months ago
CrowdStrike / xwf-yara-scanner
View on GitHub
☆93Jul 30, 2025Updated 7 months ago
op7ic / BlueTeam.Lab
View on GitHub
Blue Team detection lab created with Terraform and Ansible in Azure.
☆175Nov 20, 2024Updated last year
AndrewRathbun / DFIRPowerShellScripts
View on GitHub
Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!
☆51Jan 9, 2026Updated last month
abrignoni / WLEAPP
View on GitHub
WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.
☆33Nov 16, 2023Updated 2 years ago
zulu8 / Get-Baseline
View on GitHub
PowerShell Script for Agentless Incident Response
☆25Apr 5, 2018Updated 7 years ago
freqyXin / Offensive-Wireless-Security
View on GitHub
Slide deck for DEF CON 30 - Read Team Village - Offensive Wireless Security presentation
☆13Aug 16, 2022Updated 3 years ago
RAB301000001C3 / PCAPEXTRACT
View on GitHub
Packet Analysis on Steroids
☆13Oct 20, 2022Updated 3 years ago
Whee30 / Case-Management-script
View on GitHub
A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…
☆11Jun 19, 2025Updated 8 months ago
elastic / sans-dfir-2022
View on GitHub
Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
☆11Feb 6, 2025Updated last year
forestmonster / AWSLeR
View on GitHub
AWS Live Response
☆11Sep 19, 2017Updated 8 years ago
ReconInfoSec / velociraptor-to-timesketch
View on GitHub
☆14Oct 24, 2024Updated last year
mnrkbys / macosac
View on GitHub
Forensic Artifact Collection Tool for macOS
☆118Jul 28, 2025Updated 7 months ago
openrelik / openrelik-server
View on GitHub
The backend server handling API requests and task management
☆56Updated this week
swisscom / Invoke-Forensics
View on GitHub
Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
☆118Nov 28, 2023Updated 2 years ago
DFIRScience / DFIRCommunityHardwareFund
View on GitHub
Repository to track community hardware, data and funding.
☆12Apr 8, 2022Updated 3 years ago
dwmetz / Mal-Hash
View on GitHub
This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.
☆15Jul 13, 2023Updated 2 years ago