SIFT
☆536Feb 14, 2024Updated 2 years ago
Alternatives and similar repositories for sift
Users that are interested in sift are comparing it to the libraries listed below
Sorting:
- CLI tool to manage a SIFT Install☆420Mar 25, 2023Updated 2 years ago
- Salt States for Configuring the SIFT Workstation☆108Updated this week
- SIFT Bootstrap Script☆145Jun 20, 2017Updated 8 years ago
- Volatility plugins developed and maintained by the community☆21Sep 18, 2024Updated last year
- Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux☆135Mar 15, 2026Updated last week
- Configuration files for the SOF-ELK VM☆1,723Jan 21, 2026Updated 2 months ago
- Digital Forensics artifact repository☆1,213Feb 11, 2026Updated last month
- Super timeline all the things☆2,034Feb 10, 2026Updated last month
- A Powershell incident response framework☆1,640Nov 22, 2022Updated 3 years ago
- Scripts and code referenced in CrowdStrike blog posts☆339Nov 13, 2019Updated 6 years ago
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆59Jun 24, 2025Updated 8 months ago
- Collaborative forensic timeline analysis☆3,290Updated this week
- Example programs used in the automating DFIR series☆63Mar 4, 2019Updated 7 years ago
- PowerForensics provides an all in one platform for live disk forensic analysis☆1,427Nov 16, 2023Updated 2 years ago
- Tool suite for inspecting NTFS artifacts.☆226Nov 1, 2023Updated 2 years ago
- Rekall Memory Forensic Framework☆1,999Oct 18, 2020Updated 5 years ago
- This repository serves as a place for community created Targets and Modules for use with KAPE.☆824Mar 12, 2026Updated last week
- Packer.io Scripts to build the SIFT VM(s)☆10Aug 29, 2020Updated 5 years ago
- Digging Deeper....☆3,832Updated this week
- CyLR - Live Response Collection Tool☆714Jun 1, 2022Updated 3 years ago
- Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux☆506Oct 21, 2022Updated 3 years ago
- GRR Rapid Response: remote live forensics for incident response☆5,046Feb 16, 2026Updated last month
- A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.☆737Jun 5, 2025Updated 9 months ago
- A curated list of tools for incident response☆8,879Jul 18, 2024Updated last year
- Web interface for the Volatility Memory Forensics Framework☆259Nov 21, 2017Updated 8 years ago
- Web App for Volatility framework☆390Jan 13, 2026Updated 2 months ago
- Extract $MFT record info and log it to a csv file.☆288Oct 7, 2024Updated last year
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,106Apr 16, 2021Updated 4 years ago
- Collecting & Hunting for IOCs with gusto and style☆117Aug 9, 2018Updated 7 years ago
- A framework for orchestrating forensic collection, processing and data export☆345Updated this week
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆343Jun 25, 2022Updated 3 years ago
- This is the development tree. Production downloads are at:☆1,344Jan 29, 2026Updated last month
- Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by …☆3,055Oct 25, 2025Updated 4 months ago
- ☆519Jan 26, 2021Updated 5 years ago
- DPS' Lightweight Investigation Notebook☆433Dec 31, 2023Updated 2 years ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆306May 7, 2025Updated 10 months ago
- An advanced memory forensics framework☆7,982May 16, 2025Updated 10 months ago
- Tool to extract indicators of compromise from security reports in PDF format☆439Feb 24, 2023Updated 3 years ago
- TheHive is a Collaborative Case Management Platform, now distributed as a commercial version☆3,895Jul 25, 2025Updated 7 months ago