theflakes/Linux_Forensic_Harvester external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

theflakes/Linux_Forensic_Harvester

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/theflakes/Linux_Forensic_Harvester)

Close

theflakes / Linux_Forensic_HarvesterView on GitHubMore

• External links
• Readme badge

Harvest Linux forensic data for operational triage of an event.

☆51Nov 30, 2025Updated 5 months ago

Alternatives and similar repositories for Linux_Forensic_Harvester

Users that are interested in Linux_Forensic_Harvester are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• theflakes / reg_hunter

  View on GitHub
  Blueteam operational triage registry hunting/forensic tool.
  ☆148Sep 2, 2025Updated 8 months ago
• jnbdz / forensic-imaging-quickstarts

  View on GitHub
  Forensic Imaging quickstarts!
  ☆14Aug 12, 2022Updated 3 years ago
• ydkhatri / jarp

  View on GitHub
  Just Another broken Registry Parser (JARP)
  ☆16May 23, 2024Updated last year
• zerber0s / mac_int

  View on GitHub
  macOS Artifact Intelligence Tool
  ☆13Apr 30, 2019Updated 7 years ago
• bgrundy / cheatsheets-forensic

  View on GitHub
  Forensic cheatsheets for use with cheat
  ☆15Dec 2, 2021Updated 4 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• mnrkbys / ma2tl

  View on GitHub
  macOS forensic timeline generator using the analysis result DBs of mac_apt
  ☆94Sep 7, 2023Updated 2 years ago
• f-block / volatility-plugins

  View on GitHub
  ☆24Apr 22, 2025Updated last year
• forensicxlab / volatility3_plugins

  View on GitHub
  ☆25Jul 23, 2024Updated last year
• EricZimmerman / TLEFilePlugins

  View on GitHub
  Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…
  ☆33May 11, 2026Updated last week
• west-wind / Spring4Shell-Detection

  View on GitHub
  Lazy SPL to detect Spring4Shell exploitation
  ☆12Jul 8, 2022Updated 3 years ago
• CyberCX-DFIR / usnjrnl_rewind

  View on GitHub
  USN Journal full path builder
  ☆69Apr 16, 2026Updated last month
• AamerShah / s3n

  View on GitHub
  Search-Scan-Save-Notify
  ☆11May 12, 2025Updated last year
• LincolnLandForensics / HodgePodge

  View on GitHub
  /ˈhäjˌpäj/ "a confused mixture."
  ☆15May 14, 2026Updated last week
• theflakes / fmd

  View on GitHub
  Windows file metadata / forensic tool.
  ☆20Oct 12, 2025Updated 7 months ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• ArsenalRecon / SdbaParser

  View on GitHub
  Parser for Sdba memory pool tags
  ☆21Jul 16, 2021Updated 4 years ago
• mac4n6 / FSEventsParser

  View on GitHub
  Parser fo macOS/iOS FSEvents Logs
  ☆46May 6, 2024Updated 2 years ago
• kacos2000 / Win10LiveInfo

  View on GitHub
  Windows 10 Live Information viewer
  ☆40Jan 27, 2022Updated 4 years ago
• memprocfshunt / MemProcFSHunter

  View on GitHub
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆45May 12, 2021Updated 5 years ago
• csababarta / memory-baseliner

  View on GitHub
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆57Jul 2, 2023Updated 2 years ago
• volatilityfoundation / community3

  View on GitHub
  Volatility3 plugins developed and maintained by the community
  ☆66Mar 19, 2023Updated 3 years ago
• nicoleibrahim / DSStoreParser

  View on GitHub
  macOS .DS_Store Parser
  ☆81Aug 17, 2021Updated 4 years ago
• OMENScan / AChoirX

  View on GitHub
  ReWrite of AChoir in Go for Cross Platform forensic artifact collection and processing
  ☆42May 10, 2026Updated last week
• ydkhatri / UnifiedLogReader

  View on GitHub
  A parser for Unified logging tracev3 files
  ☆100Jul 25, 2025Updated 9 months ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• sumeshi / ntfsfind

  View on GitHub
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆28Apr 14, 2026Updated last month
• strozfriedberg / sidr

  View on GitHub
  Search Index Database Reporter
  ☆136Oct 28, 2025Updated 6 months ago
• whichbuffer / Antidebug

  View on GitHub
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆12Oct 1, 2022Updated 3 years ago
• net-protect / google-fs-recover

  View on GitHub
  Google Filestream Forensic Tool
  ☆22Mar 10, 2022Updated 4 years ago
• amir9339 / volatility-docker

  View on GitHub
  A suite of Volatility 3 plugins for memory forensics of Docker containers
  ☆18Jan 10, 2024Updated 2 years ago
• kacos2000 / Evtx_Log_Browser

  View on GitHub
  Evtx Log (xml) Browser
  ☆59Mar 12, 2023Updated 3 years ago
• Beercow / walitean

  View on GitHub
  ☆11Aug 3, 2018Updated 7 years ago
• JPCERTCC / Windows-Symbol-Tables

  View on GitHub
  Windows symbol tables for Volatility 3
  ☆94Jul 11, 2024Updated last year
• CrowdStrike / SuperMem

  View on GitHub
  A python script developed to process Windows memory images based on triage type.
  ☆266Nov 25, 2023Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• 00010111 / gMetaDataParse

  View on GitHub
  ☆23Mar 12, 2025Updated last year
• sandflysecurity / sandfly-file-decloak

  View on GitHub
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆29Sep 29, 2025Updated 7 months ago
• mnrkbys / macosac

  View on GitHub
  Forensic Artifact Collection Tool for macOS
  ☆119Jul 28, 2025Updated 9 months ago
• embee-research / CyberChef

  View on GitHub
  ☆16Mar 22, 2023Updated 3 years ago
• giuseppetotaro / asla

  View on GitHub
  Bash script for performing the logical acquisition of Apple Silicon Mac
  ☆18Jun 21, 2024Updated last year
• ruppde / yara_rules

  View on GitHub
  Yara rules
  ☆21Mar 27, 2023Updated 3 years ago
• ydkhatri / macOS_FE

  View on GitHub
  Tools for macOS Forensic Bootable media
  ☆16May 20, 2020Updated 6 years ago