Graphical interface for the forensic logical acquisition of Mac computers

A repo that aims to centralize a current, running list of relevant parsers/tools for known DFIR artifacts

Cryptocurrency Triage Tool - Identify multiple cryptocurrency addresses and transactions from various wallet applications!

Casting light on shadow cloud deployments. Detect exposure of resources deployed in AWS.

bfcpf stands for "Brute Force CPF" and it is a CLI tool that breaks a partial CPF, finding all valid ones within the pattern given by the user.

Convert Kape Files to DFIR-ORC configurations

Forensic artifact collection - Windows, Linux

OpenSource DFIR Tool through Digging Deeper ....

Hey! This is a comprehensive guide for crisis/incident management of the DFIR process. Refer to the README.md file for a sequential flow of content.

Basic rapid linux IR bash script

A batch script that quickly obtains the relevent forensic info for an UltraViewer compromise.

Wuodan is a command-line tool designed for efficiently searching through files and directories for strings or regular expressions

Criação de novos módulos para a ferramenta forense KAPE.