diff --git a/README.md b/README.md
index 314a25e..5a4e94d 100644
--- a/README.md
+++ b/README.md
@@ -3,4 +3,18 @@ A curated list of tools for incident response
 
 [![Awesome](https://cdn.rawgit.com/sindresorhus/awesome/d7305f38d29fed78fa85652e3a63e154dd8e8829/media/badge.svg)](https://github.com/sindresorhus/awesome)
 
+- [Disk Image Creation Tools](#disk-image-creation-tools)
+- [Memory Analysis Tools](#memory-analysis-tools)
+
+## IR tools Collection
+
+### Disk Image Creation Tools
+
+*Web traffic anonymizers for analysts.*
+
+* [GetData Forensic Imager](http://www.forensicimager.com/) - GetData Forensic Imager is a Windows based program that will acquire, convert, or verify a forensic image in one of the following common forensic file formats
+* [Guymager](http://guymager.sourceforge.net) - Guymager is a free forensic imager for media acquisition on Linux
+* [AccessData FTK Imager](http://accessdata.com/support/adownloads#FTKImager) - AccessData FTK Imager is a forensics tool whose main purpose is to preview recoverable data from a disk of any kind. FTK Imager can also acquire live memory and paging file on 32bit and 64bit systems
+
+### Memory Analysis Tools