forensic

Star

Here are 139 public repositories matching this topic...

Language:All

Filter by language

All139 Python55 Shell13 PowerShell11 Go9 C8 C#6 PHP4 Jupyter Notebook3 TypeScript3 Java2

Sort:Most stars

Sort options

Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

sepinf-inc /IPED

Star1.5k

IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners.

recovery digital-forensics forensic

UpdatedFeb 13, 2026
Java

dfir-iris /iris-web

Sponsor

Star1.4k

Collaborative Incident Response platform

python incident-response digital-forensics forensic-analysis forensic csirt-tooling digital-forensics-incident-response forensic-tools

UpdatedFeb 16, 2026
Python

mthcht /ThreatHunting-Keywords

Sponsor

Star633

Awesome list of keywords and artifacts for Threat Hunting sessions

splunk incident-response dfir awesome-list threat-hunting siem iocs offensive-security soc yara-rules elk-stack blueteam threat-intelligence redteam forensic hacktools endpoint-security threathunting offensive-scripts detection-engineering

UpdatedAug 4, 2025
PowerShell

imakashsahu /Third-Eye-Final-Year-Project

Star263

Forensic Face Sketch Construction and Recognition (My B.E. Final Year Project)

java aws aws-s3 javafx aws-rekognition face-recognition final-year-project java-maven forensic face-sketch face-construction

UpdatedApr 18, 2023

A-YATTA /AMDH

Star218

Android Mobile Device Hardening

android security adb apk hardening android-security forensic android-malware-detection android-hardening scan-settings

UpdatedFeb 26, 2023
Python

kacos2000 /Win10

Sponsor

Star198

Win 10/11 related research

notifications windows events timeline xml dfir keywords sticky-notes bam keyword-lists win10 wdi eventlog objectid forensic jumplist amcache yourphone mediaplayer-library win11

UpdatedDec 19, 2023
PowerShell

kacos2000 /WindowsTimeline

Sponsor

Star196

Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)

windows clipboard database timeline powershell windows-10 dfir sqlite3 artifacts powershell-script copy-paste powershell-scripts timelines forensic timelineview 1803 april-2018 json1-extension 1809 1903

UpdatedFeb 16, 2023
PowerShell

Am0rphous /Awesome

Star153

Awesome collection of resources 😎 Work in progress🔥

macos raspberry-pi iot security awesome ubuntu awesomeness reverse-engineering sysadmin forensics cryptocurrency kvm awesome-list malware-analysis operating-systems forensic pen-testing raspberry-pi-os malware-analytics

UpdatedFeb 20, 2026
Shell

kh4sh3i /Malware-Analysis

Star139

A curated list of awesome malware analysis tools and resources

reverse-engineering malware ida-pro windbg malware-analysis mobsf volatility x64dbg memory-forensics malware-detection forensic

UpdatedJan 8, 2022

mnrkbys /fjta

Star103

FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), generates timelines, and detects suspicious activities.

python linux forensics dfir forensic

UpdatedJan 13, 2026
Python

karthik997 /Forensic_Toolkit

Star86

Major tools used for Digital Forensic Investigation, includes tools used for Image, Audio, Memory, Network and Disk Image data analysis. Helpful resource for CTF Challenges.

tools hacktoberfest forensic

UpdatedOct 15, 2020

kacos2000 /Queries

Sponsor

Star85

SQLite queries

android firefox ios googledrive chrome queries opera database dropbox viber skype mozilla windows-10 dfir sqlite3 whatsup forensic foreniscs windows-11

UpdatedMar 8, 2023
PowerShell

bitranox /fingerprint

Star69

Monitoring Registry and File Changes in Windows

windows registry hacking windows-10 python3 forensics windows-7 hacking-tool registry-hacks forensic-analysis registry-scripts procmon forensic-examinations forensic registry-data hacking-tools hacking-code forensics-investigations hackingtool hackingtools

UpdatedJan 14, 2026
Python

kacos2000 /Prefetch-Browser

Sponsor

Star64

Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's

windows gui browser powershell prefetch dfir win10 forensic superfetch win11

UpdatedDec 18, 2024
PowerShell

kacos2000 /Jumplist-Browser

Sponsor

Star42

Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser

windows shell gui powershell gui-application shortcut link lnk forensic jumplist propertylist shellbag automaticdestinations-ms customdestinations-ms ms-shllink shelllnk fmid mrulist 1sps 00021401-0000-0000-c000-000000000046

UpdatedFeb 19, 2026
PowerShell

CIRCL /forensic-tools

Star41

CIRCL system forensic tools or a jumble of tools to support forensic

dfir digital-forensics forensic-analysis forensic

UpdatedJan 20, 2023
Python

Srinivas11789 /urlRecon

Star35

📝 urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server

security forensics cybersecurity security-tools social-engineering reconnaissance forensic