A repo that contains links to projects by members of the Digital Forensics Discord Server! This is meant to help promote projects made by our very own members and to support open source development.
| GitHub Username | Project | Description |
|---|---|---|
| N/A | AboutDFIR.com - The Definitive Compendium Project | Owned, created, and currently operated by Devon Ackerman, AboutDFIR was previously maintained as a collaborative effort between multiple current members of the Digital Forensics Discord Server, including but not limited to Abhiram Kumar, Tony Knutson, Cassie Doemel, and Andrew Rathbun |
| Nasreddine Bencherchali | EVTX-ETW-Resources | A collaborative project with Andrew Rathbun to enumerate the various Event Providers within every version of Windows and Windows Server |
| Oaker Min | PyRedactKit | Python CLI tool to redact sensitive data. ๐๐ |
| Nisarg Suthar | Veritas | A hex viewer made for parsing and color coding artifact file structures for visualization using dynamic templates, to make validation process easier. |
| Doomdie | ReadFS | A tool designed to extract data from a logical ReFS 3.4 forensic image produced by FTK Imager. |
| Adrian Kydland Skaftun | HexMarksTheSpot | A hexviewer with annotations and educational information relating to each sequence parsed - visually appealing with colors and lots of functionality. |
| Phill Moore | This Week In 4n6 | A weekly roundup of all things Digital Forensics and Incident Response. |
| Phill Moore | The RULER Project | The Really Useful Logging and Event Repository - a community-built database documenting what logs and artifacts are available from remote access tools and antivirus products. |
| Phill Moore | Awesome-BEC | Repository of attack and defensive information for Business Email Compromise investigations. |
| C_Peter | UFADE | Extract files and logs from Apple devices (iPhone, Apple Watch, Apple TV, ...) on Windows, Linux and MacOS. |
| C_Peter | ALEX | Extract files and logs from Android devices via ADB on Windows, Linux and MacOS. Also supports other operating systems with an ADB interface (e.g., Ubuntu Touch) |
| Kevin Pagano (Stark 4N6) | Forensics StartMe page | A one-stop shop of DFIR resources, including tools, cheatsheeets, blog and Youtube feeds, and more! |
| Kevin Pagano (Stark 4N6) | The Evidence Locker | A compendium of DFIR CTF and publicly available evidence images for testing and research |