SIFT
☆534Feb 14, 2024Updated 2 years ago
Alternatives and similar repositories for sift
Users that are interested in sift are comparing it to the libraries listed below
Sorting:
- CLI tool to manage a SIFT Install☆420Mar 25, 2023Updated 2 years ago
- Salt States for Configuring the SIFT Workstation☆107Feb 18, 2026Updated last week
- SIFT Bootstrap Script☆145Jun 20, 2017Updated 8 years ago
- Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux☆134Updated this week
- Volatility plugins developed and maintained by the community☆21Sep 18, 2024Updated last year
- Configuration files for the SOF-ELK VM☆1,719Jan 21, 2026Updated last month
- Digital Forensics artifact repository☆1,207Feb 11, 2026Updated 2 weeks ago
- Super timeline all the things☆2,017Feb 10, 2026Updated 2 weeks ago
- A Powershell incident response framework☆1,640Nov 22, 2022Updated 3 years ago
- Scripts and code referenced in CrowdStrike blog posts☆337Nov 13, 2019Updated 6 years ago
- Collaborative forensic timeline analysis☆3,271Feb 23, 2026Updated last week
- PowerForensics provides an all in one platform for live disk forensic analysis☆1,428Nov 16, 2023Updated 2 years ago
- Rekall Memory Forensic Framework☆1,997Oct 18, 2020Updated 5 years ago
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆59Jun 24, 2025Updated 8 months ago
- This repository serves as a place for community created Targets and Modules for use with KAPE.☆817Updated this week
- Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux☆505Oct 21, 2022Updated 3 years ago
- CyLR - Live Response Collection Tool☆711Jun 1, 2022Updated 3 years ago
- Example programs used in the automating DFIR series☆63Mar 4, 2019Updated 6 years ago
- Web App for Volatility framework☆390Jan 13, 2026Updated last month
- Digging Deeper....☆3,784Updated this week
- A framework for orchestrating forensic collection, processing and data export☆343Feb 18, 2026Updated last week
- GRR Rapid Response: remote live forensics for incident response☆5,040Feb 16, 2026Updated last week
- DPS' Lightweight Investigation Notebook☆433Dec 31, 2023Updated 2 years ago
- A curated list of tools for incident response☆8,832Jul 18, 2024Updated last year
- This is the development tree. Production downloads are at:☆1,334Jan 29, 2026Updated last month
- Tool suite for inspecting NTFS artifacts.☆226Nov 1, 2023Updated 2 years ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,106Apr 16, 2021Updated 4 years ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,486Jan 12, 2026Updated last month
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆343Jun 25, 2022Updated 3 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆439Feb 24, 2023Updated 3 years ago
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,908Jul 6, 2024Updated last year
- A forensics tool to convert the data in the Windows srum (System Resource Usage Monitor) database to an xlsx spreadsheet.☆735Jun 5, 2025Updated 8 months ago
- The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…☆2,993Feb 18, 2026Updated last week
- Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by …☆3,026Oct 25, 2025Updated 4 months ago
- An informational repo about hunting for adversaries in your IT environment.☆1,850Nov 17, 2021Updated 4 years ago
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆6,141Feb 23, 2026Updated last week
- TheHive is a Collaborative Case Management Platform, now distributed as a commercial version☆3,890Jul 25, 2025Updated 7 months ago
- Web interface for the Volatility Memory Forensics Framework☆260Nov 21, 2017Updated 8 years ago
- Extract $MFT record info and log it to a csv file.☆286Oct 7, 2024Updated last year