Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 23 Python Forensic Projects
-
mvt
MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.
-
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
oletools
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
-
Digital-Forensics-Guide
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
andriller
📱 Andriller - is software utility with a collection of forensic tools for smartphones. It performs read-only, forensically sound, non-destructive acquisition from Android devices.
-
RecoverPy
Interactively find and recover deleted or :point_right: overwritten :point_left: files from your terminal
-
WhatsApp-Key-Database-Extractor
The most advanced and complete solution for extracting WhatsApp key/DB from package directory (/data/data/com.whatsapp) without root access.
-
varc
Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of particular use when investigating a security incident.
-
netspionage
Network Forensics CLI utility that performs Network Scanning, OSINT, and Attack Detection
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Amnesty International released Mobile Verification Toolkit to check your phone for malware, by checking encrypted backups on your computer. https://github.com/mvt-project/mvt
1. Prowler: https://github.com/prowler-cloud/prowler Prowler provides security best practices assessments, audits, incident response readiness, and continuous monitoring for AWS environments.
If you're looking to learn on your own, try mikeroyal's digital forensics guide on Github. There's a lot of recommended resources there that'll speed you up. https://github.com/mikeroyal/Digital-Forensics-Guide
Project mention: RecoverPy 2.1.3: A Linux tool to recover deleted or overwritten files | /r/opensource | 2023-10-23
Project mention: My productivity app is a never-ending .txt file | news.ycombinator.com | 2024-02-19
You want Turbinia and DFTimewolf. Literally the tools built by the DF team at Google (the same team that makes L2T) purpose-built to do exactly what you're asking.
Project mention: RecuperaBit: A tool for forensic file system reconstruction | news.ycombinator.com | 2024-02-07
Python Forensics related posts
-
RecuperaBit: A tool for forensic file system reconstruction
-
Most used DFIR tools
-
As recommended, I ask it here : how can I find out if my phone is being tapped, and what should I do if it is?
-
How do I download this on iPhone
-
I dont know if i downloaded malware
-
iOS 16.5.1 TriangleDB spyware
-
Can anyone hack my phone via sending a WhatsApp Photo? How to know it?
-
A note from our sponsor - InfluxDB
www.influxdata.com | 10 May 2024
Index
What are some of the best open-source Forensic projects in Python? This list will help you:
Project | Stars | |
---|---|---|
1 | mvt | 9,820 |
2 | prowler | 9,611 |
3 | oletools | 2,751 |
4 | timesketch | 2,496 |
5 | volatility3 | 2,228 |
6 | plaso | 1,624 |
7 | Digital-Forensics-Guide | 1,357 |
8 | andriller | 1,246 |
9 | RecoverPy | 1,172 |
10 | hindsight | 1,021 |
11 | mac_apt | 718 |
12 | turbinia | 714 |
13 | python-evtx | 670 |
14 | Zircolite | 599 |
15 | docker-explorer | 516 |
16 | RecuperaBit | 504 |
17 | MalConfScan | 468 |
18 | WhatsApp-Key-Database-Extractor | 430 |
19 | WhatsDump | 263 |
20 | varc | 232 |
21 | MR | 147 |
22 | netspionage | 141 |
23 | autotimeliner | 119 |
Sponsored