theflakes/Linux_Forensic_Harvester external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

theflakes/Linux_Forensic_Harvester

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/theflakes/Linux_Forensic_Harvester)

Close

theflakes / Linux_Forensic_HarvesterView on GitHubMore

• External links
• Readme badge

Harvest Linux forensic data for operational triage of an event.

☆51Nov 30, 2025Updated 3 months ago

Alternatives and similar repositories for Linux_Forensic_Harvester

Users that are interested in Linux_Forensic_Harvester are comparing it to the libraries listed below

• theflakes / reg_hunter

  View on GitHub
  Blueteam operational triage registry hunting/forensic tool.
  ☆149Sep 2, 2025Updated 6 months ago
• jnbdz / forensic-imaging-quickstarts

  View on GitHub
  Forensic Imaging quickstarts!
  ☆13Aug 12, 2022Updated 3 years ago
• zerber0s / mac_int

  View on GitHub
  macOS Artifact Intelligence Tool
  ☆13Apr 30, 2019Updated 6 years ago
• ydkhatri / jarp

  View on GitHub
  Just Another broken Registry Parser (JARP)
  ☆16May 23, 2024Updated last year
• bgrundy / cheatsheets-forensic

  View on GitHub
  Forensic cheatsheets for use with cheat
  ☆15Dec 2, 2021Updated 4 years ago
• mnrkbys / ma2tl

  View on GitHub
  macOS forensic timeline generator using the analysis result DBs of mac_apt
  ☆93Sep 7, 2023Updated 2 years ago
• forensicxlab / volatility3_plugins

  View on GitHub
  ☆25Jul 23, 2024Updated last year
• AamerShah / s3n

  View on GitHub
  Search-Scan-Save-Notify
  ☆11May 12, 2025Updated 9 months ago
• LincolnLandForensics / HodgePodge

  View on GitHub
  /ˈhäjˌpäj/ "a confused mixture."
  ☆13Feb 21, 2026Updated last week
• f-block / volatility-plugins

  View on GitHub
  ☆24Apr 22, 2025Updated 10 months ago
• EricZimmerman / TLEFilePlugins

  View on GitHub
  Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…
  ☆30May 5, 2025Updated 9 months ago
• CyberCX-DFIR / usnjrnl_rewind

  View on GitHub
  USN Journal full path builder
  ☆65Sep 16, 2024Updated last year
• ArsenalRecon / SdbaParser

  View on GitHub
  Parser for Sdba memory pool tags
  ☆21Jul 16, 2021Updated 4 years ago
• amir9339 / volatility-docker

  View on GitHub
  A suite of Volatility 3 plugins for memory forensics of Docker containers
  ☆18Jan 10, 2024Updated 2 years ago
• theflakes / fmd

  View on GitHub
  Windows file metadata / forensic tool.
  ☆18Oct 12, 2025Updated 4 months ago
• mac4n6 / FSEventsParser

  View on GitHub
  Parser fo macOS/iOS FSEvents Logs
  ☆43May 6, 2024Updated last year
• nicoleibrahim / DSStoreParser

  View on GitHub
  macOS .DS_Store Parser
  ☆76Aug 17, 2021Updated 4 years ago
• memprocfshunt / MemProcFSHunter

  View on GitHub
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆45May 12, 2021Updated 4 years ago
• mnrkbys / macosac

  View on GitHub
  Forensic Artifact Collection Tool for macOS
  ☆118Jul 28, 2025Updated 7 months ago
• kacos2000 / Win10LiveInfo

  View on GitHub
  Windows 10 Live Information viewer
  ☆38Jan 27, 2022Updated 4 years ago
• EricZimmerman / Sum

  View on GitHub
  ☆20Jan 10, 2025Updated last year
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 3 years ago
• net-protect / google-fs-recover

  View on GitHub
  Google Filestream Forensic Tool
  ☆22Mar 10, 2022Updated 3 years ago
• volatilityfoundation / community3

  View on GitHub
  Volatility3 plugins developed and maintained by the community
  ☆63Mar 19, 2023Updated 2 years ago
• csababarta / memory-baseliner

  View on GitHub
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆56Jul 2, 2023Updated 2 years ago
• msuhanov / dfir_ntfs

  View on GitHub
  An NTFS/FAT parser for digital forensics & incident response
  ☆220Oct 31, 2025Updated 4 months ago
• Immersive-Labs-Sec / volatility_plugins

  View on GitHub
  Volatility 3 Plugins
  ☆21Oct 3, 2022Updated 3 years ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool

  View on GitHub
  Linux Baseline and Forensic Triage Tool - BETA
  ☆57Sep 8, 2022Updated 3 years ago
• kacos2000 / Evtx_Log_Browser

  View on GitHub
  Evtx Log (xml) Browser
  ☆56Mar 12, 2023Updated 2 years ago
• strozfriedberg / sidr

  View on GitHub
  Search Index Database Reporter
  ☆131Oct 28, 2025Updated 4 months ago
• WiredPulse / AutomatedProfiler

  View on GitHub
  Automated forensics written in PowerShell
  ☆34Sep 29, 2019Updated 6 years ago
• gmagklaras / POFR

  View on GitHub
  Penguin OS Forensic (or Flight) Recorder
  ☆40Dec 25, 2024Updated last year
• digitalsleuth / time_decode

  View on GitHub
  A timestamp and date decoder written for python 3
  ☆41Jan 22, 2026Updated last month
• kacos2000 / WindowsTimeline

  View on GitHub
  Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)
  ☆196Feb 16, 2023Updated 3 years ago
• CrowdStrike / SuperMem

  View on GitHub
  A python script developed to process Windows memory images based on triage type.
  ☆266Nov 25, 2023Updated 2 years ago
• OMENScan / AChoirX

  View on GitHub
  ReWrite of AChoir in Go for Cross Platform forensic artifact collection and processing
  ☆41Updated this week
• DFIRKuiper / Kuiper

  View on GitHub
  Digital Forensics Investigation Platform
  ☆872Oct 12, 2024Updated last year
• JPCERTCC / Windows-Symbol-Tables

  View on GitHub
  Windows symbol tables for Volatility 3
  ☆93Jul 11, 2024Updated last year
• ydkhatri / UnifiedLogReader

  View on GitHub
  A parser for Unified logging tracev3 files
  ☆97Jul 25, 2025Updated 7 months ago