Top 6 digitalforensic Open-Source Projects

Digital-Forensics-Guide

6 1,335 6.4 Python

Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

Project mention: Most used DFIR tools | /r/cybersecurity | 2023-12-10

If you're looking to learn on your own, try mikeroyal's digital forensics guide on Github. There's a lot of recommended resources there that'll speed you up. https://github.com/mikeroyal/Digital-Forensics-Guide

sysmon-config

1 749 7.2 PowerShell

Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events. (by ion-storm)
InfluxDB

www.influxdata.com sponsored

Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
awesome-event-ids

2 541 6.0

Collection of Event ID ressources useful for Digital Forensics and Incident Response
DFIRMindMaps

3 475 1.8

A repository of DFIR-related Mind Maps geared towards the visual learners!
ccl_chrome_indexeddb

1 107 6.8 Python

(Sometimes partial) Python re-implementations of the technologies involved in reading various data sources in Chrome-esque applications.
EventTranscript.db-Research

1 38 0.0

A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).