Top 23 digital-forensic Open-Source Projects

• awesome-forensics

  4 3,597 6.4

  A curated list of awesome forensic analysis tools and resources

Project mention: A fun new feature we are working on in systemd: userspace-only reboot | news.ycombinator.com | 2023-07-06

https://github.com/cugu/awesome-forensics#acquisition : Memory forensics acquisition tools: POFR: PenguinOS Flight Recorder, LIME

• TheHive

  24 3,166 0.0 Scala

  TheHive: a Scalable, Open Source and Free Security Incident Response Platform

  

Project mention: What are your go-to tools for task management and/or case work? | /r/cybersecurity | 2023-12-09

I had a quick test with the hive looks pretty nice. https://thehive-project.org/

• InfluxDB

  www.influxdata.com featured

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• velociraptor

  5 2,683 9.6 Go

  Digging Deeper....

  

Project mention: How to carry out mass Digital Forensic Collections using open source tools? | /r/computerforensics | 2023-12-06

• tcpflow

  5 1,645 3.7 C++

  TCP/IP packet demultiplexer. Download from:

• MemLabs

  6 1,520 2.6 Shell

  Educational, CTF-styled labs for individuals interested in Memory Forensics

• Digital-Forensics-Guide

  6 1,357 6.4 Python

  Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

Project mention: Most used DFIR tools | /r/cybersecurity | 2023-12-10

If you're looking to learn on your own, try mikeroyal's digital forensics guide on Github. There's a lot of recommended resources there that'll speed you up. https://github.com/mikeroyal/Digital-Forensics-Guide

• Cortex

  4 1,253 4.1 Scala

  Cortex: a Powerful Observable Analysis and Active Response Engine (by TheHive-Project)

  

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

• beagle

  1 1,250 0.0 Python

  Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs. (by yampelo)

• ThePhish

  17 1,046 0.0 Python

  ThePhish: an automated phishing email analysis tool

Project mention: How do you deal with phising emails at your company? | /r/cybersecurity | 2023-05-14

• iris-web

  9 942 9.6 JavaScript

  Collaborative Incident Response platform

  

• whatfiles

  2 936 3.3 C

  Log what files are accessed by any Linux process

Project mention: Everything that uses configuration files should report where they're located | news.ycombinator.com | 2023-06-25

https://github.com/spieglt/whatfiles may be useful to find such files

• cybersecurity-career-path

  2 924 0.0

  Cybersecurity Career Path

Project mention: Cybersecurity / cybersecurity engineer road map | /r/careeradvice | 2023-07-07

• ForensicsTools

  1 894 2.8

  A list of free and open forensics analysis tools and other resources

• IPED

  4 842 9.9 Java

  IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners.

  

• AzureHunter

  2 764 0.0 PowerShell

  A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365

• Kuiper

  2 720 6.7 JavaScript

  Digital Forensics Investigation Platform

• LinuxForensics

  4 664 7.1 Shell

  Everything related to Linux Forensics

• AvillaForensics

  2 611 8.2 C#

  Avilla Forensics 3.0

• dfirtrack

  2 465 7.8 Python

  DFIRTrack - The Incident Response Tracking Application

  

• MemProcFS-Analyzer

  2 402 6.1 PowerShell

  MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR

• kobackupdec

  1 275 1.8 Python

  Huawei backup decryptor

  

• catalyst

  6 271 8.7 Go

  Catalyst is an open source SOAR and ticket system that helps to automate alert handling and incident response processes (by SecurityBrewery)

  

• Collect-MemoryDump

  2 211 4.5 PowerShell

  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR

• SaaSHub

  www.saashub.com featured

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

digital-forensics related posts

• Cybersecurity / cybersecurity engineer road map

  1 project | /r/careeradvice | 7 Jul 2023

• A fun new feature we are working on in systemd: userspace-only reboot

  1 project | news.ycombinator.com | 6 Jul 2023

• IPED Digital Forensic Tool

  1 project | /r/CKsTechNews | 3 May 2023

• A curated list of awesome forensic analysis tools and resources

  1 project | /r/Ethical_Hackers | 4 Apr 2023

• Report tips and note taking tips

  4 projects | /r/computerforensics | 21 Mar 2023

• tcpdump is amazing (2016)

  2 projects | news.ycombinator.com | 2 Feb 2023

• Don't skip outgoing traffic

  4 projects | dev.to | 2 Jan 2023
• A note from our sponsor - InfluxDB
  www.influxdata.com | 10 May 2024

  Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com