Top #dfir Tools & Software

Explore 8 hand-picked tools and software tagged with dfir — ranked by popularity and community signals.

Popular Trending Recent Name A-Z

my-arsenal-of-aws-security-tools

github

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Security Shell
★ 9,446

awesome-incident-response

github

A curated list of tools for incident response

Security
★ 9,010

zeek

github

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

Security C++
★ 7,622

chainsaw

github

Rapidly Search and Hunt through Windows Forensic Artefacts

Security Rust
★ 3,539

timesketch

github

Collaborative forensic timeline analysis

Security Python
★ 3,321

LogonTracer

github

Investigate malicious Windows logon by visualizing and analyzing Windows event log

Security Python
★ 3,170

hayabusa

github

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Security Rust
★ 3,142

Digital-Forensics-Guide

github

Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

Security Python
★ 2,592